Update: The MCNA (Managed Care of North America) incident was reported to the Maine Attorney General’s Office as affecting a total of 8,923,662 people. Update 2, May 29: This incident was claimed by LockBit in March and data were leaked in April, but the data dump URLs were not working as of last check yesterday….
Category: Hack
Two ransomware groups claimed to have attacked Albany ENT & Allergy Services and leaked data, but AENT doesn’t mention that at all in their notification?
On April 28, DataBreaches reported that two different ransomware groups claimed to have attacked Albany ENT & Allergy Services, P.C. in Albany, New York. This week, Albany ENT & Allergy Services notified regulators and 224,486 affected employees and patients about a breach. Their notification is stunning, however, for its lack of certain details. In their…
The Vascular Center of Intervention breach — what their notification says and what it didn’t say
On May 24, the Vascular Center of Intervention (VCI) in California submitted a breach notification to California and posted a substitute notice on VCI’s website. The notification, signed by Dr. James Lee, states that on March 29, VCI became aware of unusual activity on its network. An investigation revealed that some patient-related files had been…
Norton Healthcare didn’t call it a ransomware attack. Then BlackCat claimed responsibility for it.
On May 20, DataBreaches reported that Norton Healthcare in Kentucky and Indiana had disclosed what sounded like a ransomware incident that they discovered on May 9, but they never called it a ransomware incident, even though they stated that they had received faxed threats and demands. Today, AlphV (BlackCat) claimed responsibility for the attack and…
Microsoft: Notorious FIN7 hackers return in Clop ransomware attacks
Sergiu Gatlan reports: A financially motivated cybercriminal group known as FIN7 resurfaced last month, with Microsoft threat analysts linking it to attacks where the end goal was the deployment of Clop ransomware payloads on victims’ networks. “Financially motivated cybercriminal group Sangria Tempest (ELBRUS, FIN7) has come out of a long period of inactivity,” the company said in…
Apria Healthcare notifies 1.2 million patients of hacking incidents in 2019 and 2021
HIPAA requires that covered entities notify HHS and affected patients of a reportable breach within 60 calendar days of discovery of a breach. Exceptions are made if law enforcement asks an entity to delay notification so as not to interfere with an investigation, but such requests are infrequent. So why are we first finding out…