Andrea Park reports: A vulnerability found in software used to monitor some of BD’s infusion pumps could potentially give hackers access to personal data stored in the system. BD posted a cybersecurity bulletin about the issue Thursday and said it has already notified the FDA and the U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency…
Category: Health Data
$150 million: the cost of a cyberattack?
The cyberattack reported by CommonSpirit last year has reportedly cost the firm $150 million already. From their unaudited quarterly report: The Cyber security Incident has had an estimated adverse financial impact of approximately $150 million to date, which includes lost revenues from the associated business interruption, the costs incurred to remediate the issues and other…
MKS Instruments’ breach notification includes a surprising statement to reassure those affected
Well, this is a bit different. On February 13, MKS Instruments in Massachusetts (the U.S. parent company of the MKS and Atotech group of companies) became aware of a ransomware event. By February 16, they issued a notification letter to former and current employees who may have been affected. Their notification informed employees that, “While…
Acting Pennsylvania Attorney General Henry Secures $400,000 Settlement with DNA Diagnostics Center Stemming from Data Breach
HARRISBURG – Acting Attorney General Michelle A. Henry today announced a settlement with DNA Diagnostics Center – one of the world’s largest private DNA-testing companies offering diagnostic and genetic testing to help answer relationship, fertility, and health questions – after a data breach exposed the social security numbers of 12,663 Pennsylvanians who were subject to genetic testing…
Audit: MySejahtera Data Breach Affected Three Million Users
CodeBlue reports: The personal information of millions of MySejahtera users has been exposed after an account authorised for vaccine administration stole data from three million vaccine recipients, revealed a national audit. The latest Auditor-General’s 2021 report (Series 2) tabled in Parliament today revealed that a “Super Admin” account under the MyVAS system, which is used at…
FL: Brooks Rehabilitation notifies patients of pixel tracking breach
On January 30, Brooks Rehabilitation (“Brooks”) in Florida disclosed that in December, they discovered tracking technology vendors that provide services to Brooks were able to view/access individually identifiable health information (IIHI) provided when a website user provided contact information or feedback via a Brooks website. The data transmitted could have included information such as name;…