So many breach disclosures get overlooked during the last week of the year as people focus on family and other issues. In addition to the Prestera and Mattapan news releases that appeared on December 31, I also came across a media report out of Georgia involving Five Points Eye Care in Athens, Georgia. On October…
Category: Hack
MA: Mattapan Community Health Center notifies patients of breach
Well, I thought maybe the Prestera press release might be the last one of the year for my December PHI breach tracking purposes, but then I found this one. Mattapan Community Health Center in Massachusetts published this press release on December 31, too: MATTAPAN, Mass., Dec. 31, 2020 /PRNewswire/ — Mattapan Community Health Center (“MCHC”) is providing notice…
WV: Prestera Center notifies patients of data security incident
Prestera Center for Mental Health Services in West Virginia offers behavioral health care and addictions treatment programs, including outpatient treatment and residential substance abuse treatment. They issued a press release on December 31 and posted the following on their web site: December 31, 2020 Prestera Center Notifies Patients of Data Security Incident December 31, 2020…
Hezbollah-affiliated financial org hacked, information leaked
Tzvi Joffre reports: A hacker group called Spiderz claimed that it has succeeded in hacking into Hezbollah’s Al-Qard Al-Hassan financial organization and leaked details on depositors and borrowers from the lender, Lebanese media reported on Tuesday. The information leaked included account numbers, government IDs and passport information, as well as registration forms, account statements and…
Microsoft says Russians hacked its network, viewing source code
Ellen Nakashima reports: Russian government hackers engaged in a sweeping series of breaches of government and private-sector networks have been able to penetrate deeper into Microsoft’s systems than previously known, gaining access to potentially valuable source code, the tech giant said Thursday. The firm previously acknowledged that it had inadvertently downloaded a software patch used…
As 2020 draws to a close, it still takes too long to detect and notify patients of most breaches
The press release below the separator includes the kind of timeline that we often see in breach disclosures where an employee’s email account has been hacked. It continues to take many entities too long, in this blogger’s opinion, to detect breaches of their systems, then determine that PHI was involved, and then notify. In this…