On November 11, 2024, Humboldt Independent Practice Association (Humboldt IPA) submitted a breach report to HHS that used a placeholder of 500 for the number of patients affected. All we knew from HHS’s entry was that it was some kind of hacking or IT incident involving protected health information located in email. The California entity’s…
Category: Commentaries and Analyses
Maybe we should all file breach reports against Musk like Kevin did. (1)
The Washington Post reports: Agents of billionaire Elon Musk’s Department of Government Efficiency have gained access to highly restricted government records on millions of federal employees — including Treasury and State Department officials in sensitive security positions — as part of a broader effort to wrest control over the government’s main personnel agency, according to…
Kept in the Dark — Meet the Hired Guns Who Make Sure School Cyberattacks Stay Hidden
Kept in the Dark Meet the Hired Guns Who Make Sure School Cyberattacks Stay Hidden By Mark Keierleber This story first appeared at The 74, a nonprofit news site covering education. Sign up for free newsletters from The 74 to get more like this in your inbox. This article is published in partnership with WIRED…
Delta County Memorial Hospital District reveals more about 2024 cyberattack that affected 148,363 people
Delta County Memorial Hospital District (Delta Health) in Colorado was the victim of a cyberattack at the end of May 2024. Whatever happened — and the details still haven’t been disclosed — resulted in the provider notifying HHS on July 29 that it had suffered a breach, but the number was not yet known. The…
Cover-up Follow-up: Westend Dental starts notifying patients of October 2020 ransomware attack
In December, DataBreaches reported that the Indiana Attorney General’s Office had brought charges against Westend Dental for a number of HIPAA violations. The state had started investigating the dental practice after a patient complained about them not providing a copy of their records in response to a request. In looking into that complaint, the state…
Exclusive: Apex Custom Software hacked, threat actors threaten to leak the software (1)
On January 20, the hackers known as 0mid16B tweeted, “At 7:40AM 20th Jan (US time), a US healthcare software provider has been hacked. All data in server has been deleted. 48 hours left before we publish all data.” The attached screenshot showed a listing of medications, but without any patient information attached. Two days later,…