A while back, I was shown some live-streaming of a pager system that was being used in what appeared to be a hospital environment, as the pages included room numbers, patient medication information, etc. Unable to figure out what entity or organization was responsible for the system and the exposure as pages flew by rapidly,…
Category: Hack
GRIZZLY STEPPE – Russian Malicious Cyber Activity
Joint Analysis Report Reference Number: JAR-16-20296 December 29, 2016 Summary This Joint Analysis Report (JAR) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). This document provides technical details regarding the tools and infrastructure used by the Russian civilian and military intelligence…
Hit by ransomware, Brandywine Pediatrics recovers quickly and notifies patients
Add Delaware-based Brandywine Pediatrics, P.A. to our growing list of healthcare entities hit by ransomware. The practice notified patients on December 23 that on October 25, they had discovered that their file server was inaccessible due to a computer virus. They did not indicate what type of ransomware was involved. Brandywine reports that were able…
Family & Sports Medicine center patient records remain inaccessible three months after ransomware attack
Add Desert Care Family & Sports Medicine in Casa Grande, Arizona to the list of health facilities who suffered a ransomware attack. But what happened to them has resulted in my updating my worst breaches of 2016 list. On December 20, the center notified HHS that 500 patients were being notified that their server had…
TheDarkOverlord reveals three more attacks, with more to be revealed
Maybe they gave up on the healthcare sector in their extortion attempts, but since the summer, it appears TheDarkOverlord has turned his/its attention to other sectors. There was the WestPark Capital hack and Gorilla Glue attack, and now, in the past month, three more companies – one of which has some defense contracts. Pre-Con Products…
Southcentral Foundation notifies patients after employee email accounts hacked
Southcentral Foundation (SCF) in Alaska recently notified 14,719 individuals after two employees’ email accounts containing protected health information were hacked in October. According to their statement, SCF first became aware of a possible breach on October 18. Subsequent investigation by outside consultants determined that two employee email accounts had been accessed: one was vulnerable from Oct. 17-18, and the…