Maybe one day, a law or regulation will require entities to purge old data that is no longer needed or requires it to be disconnected from the internet. If anyone needs a fresh example of why we need that type of law or regulation, here it is: Richard T. Miller, DMD, PC, d/b/a Great Neck/Mid…
Category: Health Data
Four months after cyberattack, CHC Montlégia hospital system still offline
Seen in an article on The Brussels Times about risks to hospitals of cyberattacks: Last November the CHC Montlégia in Liège was also the victim of a cyberattack. Nearly four months later, its computer system is still offline. The only thing I could find on that was this February article on how the CHC was…
Website intrusion attempt: India’s Department of Health seeks help from Chot-In
PiPa reports: India’s Computer Emergency Response Team (CHOT-IN) has been asked to investigate the alleged hacking of the Health Department’s website by a Russian group The Indian Computer Emergency Response Team (CHOT-IN) has been asked to investigate the alleged hacking of the Health Department’s website by a Russian team. . CloudSEK, a cyber security company,…
Patient’s ’embarrassing’ private health information posted to Facebook after breach
Tori Gaines reports: A woman has reported that the results of her test for sexually transmitted diseases were posted to Facebook after a worker at a California hospital gained access to her medical records, according to a complaint shared by her attorney. There’s a lot to consider about this case. From the reporting, it appears…
Break-in poses security threat to Multnomah County Health Department patients
Lisa Moreno reports: The Multnomah County Health Department began notifying over 2,000 patients Friday that a month-old security breach may have put their personal information at risk. Someone broke into the Gladys McCoy Health Department headquarters in Old Town on the night of Feb. 17 and the county notified police on Feb. 21 after discovering the burglary,…
Bits ‘n Pieces (Trozos y Piezas)
ES: HLA Grupo Hospitalario data listed for sale after web server misconfiguration On March 14, a forum user on BreachForums listed data from the HLA Grupo Hospitalario in Spain for sale. The listing advertised 45,000 patient records and information on 1,600 doctors, with samples provided of each. HLA Grupo Hospitalario is owned by Asisa, which…