Every time I think I’m ready to total out the March data on health data attacks or incidents, another incident pops up belatedly on HHS’s site. This time, there were two reports that I had to add yesterday. One was a report from Palmetto Health in South Carolina (now part of Prisma). Palmetto reported that…
Category: Phishing
MA: Baystate Health suffers data breach affecting 12,000 patients
AP reports: A Massachusetts hospital says a data breach exposed information about some 12,000 patients. Baystate Health of Springfield said Monday that a phishing incident resulted in unauthorized access to the email accounts of several employees between Feb. 7 and March 7. The hospital says the accounts included patient names and dates of birth, certain…
Health data breaches due to external actors continue to predominate recently.
Because I’m at a conference, it’s been hard to update a lot, but here are a few of the health data breaches I’ve spotted this week: Main Line Endoscopy Centers in Pennsylvania announced that it recently mailed notifications to patients whose personal information was in an employee’s email account a t the time that the…
This prolific phishing gang is back with new tactics to target executives
Danny Palmer reports: A prolific cyber criminal phishing operation which built a list of 50,000 executives, CFOs and other top financial personnel has expanded its operations with a new database of additional targets. Initially uncovered by researchers at cyber security company Agari, the Business Email Compromise (BEC) group dubbed London Blue distributes phishing emails in…
Plaintiffs in Casino Rama class-action lawsuit and defendants argue in court over how big the class should be.
In November, 2016, Casino Rama in Ontario disclosed that it had been hacked. Shortly thereafter, we learned that some of that data had already been leaked online. The hackers, who signed themselves as “Anonymous Threat Agent,” wrote that the breach was “extremely simple” and that “no security systems were in place leaving the whole casino…
DePaul experienced phishing-related data breach, notified 902 health program clients (updated, corrected)
Correction of April 9, 2019: It appears that although DePaul reviewed 41,000 emails, they wound up needing to notify only 902 patients. Sarah Taddeo reports: Local housing and health provider DePaul experienced a data breach in February that exposed some clients’ sensitive information, the organization announced Friday. The incident was deemed a “phishing scam” — a hacking…