I cannot remember any other breach where CMS actually issued those affected new Medicare numbers and cards, but it happened in this one: A Centers for Medicare and Medicaid (CMS) subcontractor was the victim of a ransomware attack in October. The full press release follows: The Centers for Medicare & Medicaid Services (CMS) is responding…
Category: Health Data
HHS Civil Rights Office Enters Settlement with Dental Practice Over Disclosures of Patients’ Protected Health Information
From HHS, resolution of a complaint they received in 2017: The Office for Civil Rights (OCR) has settled with B. Brandon Au, DDS, Inc., d/b/a New Vision Dental (New Vision Dental), in California, over the impermissible disclosure of patient protected health information (PHI) in response to online reviews, and other potential violations of the Health…
HC3: Analyst Note: LockBit 3.0 Ransomware
Report: 202212121700 LockBit 3.0 Ransomware December 12, 2022 Executive Summary LockBit 3.0 is the newest version of the LockBit ransomware that was first discovered in September 2019. The ransomware family has a history of using the Ransomware-as-a-service (RaaS) model and typically targets organizations that could pay higher ransoms. Historically, this ransomware employs a double extortion…
Public Notice: Disruptions and delays in services at the Queen Elizabeth Hospital Barbados
December 13: The Public is advised that the QEH is currently Investigating a cyber security incident on its Internet network. A number of areas appears to have been affected. There will be disruptions and delays in services, the duration of which is unknown at this time. The hospital’s IT Department in conjunction with MIST and…
Most of the 10 largest healthcare data breaches in 2022 are tied to vendors
Jessica Davis reports: Ninety percent of 10 largest healthcare data breaches reported this year were caused by third-party vendors, much like in 2021. The fallout for many of these cyberattacks resulted in impacts for multiple connected providers, with two of these vendor incidents affecting hundreds of providers. These incidents should serve as a warning to…
Cost of HSE cyberattack by Conti rises to €80m, letter shows
Jennifer Bray reports: The cost of the cyberattack on the Health Service Executive has risen to €80 million, according to new information. In a letter to Aontú leader Peadar Tóibín last Friday, HSE chief information officer Fran Thompson said that the costs came to more than €42 million in 2021 and to nearly €39 million…