Patient records from a newly closed medical practice were not properly disposed of the privacy commissioner has ruled. Dr. Lalita Malhotra, who retired earlier this year, failed to have all records shredded by a company that deals in secure shredding and some ended up whole in a recycling facility. “Dr. Malhotra states that she accepts…
Category: Health Data
SickKids reports ‘cybersecurity incident’ affecting some phone lines and web pages
The Canadian Press reports: Toronto’s Hospital for Sick Children says it’s responding to a “cybersecurity incident” affecting some of its phone lines, web pages and clinical systems. The hospital says all patient care continues and there is currently no evidence that personal health information has been compromised. SickKids says it called the hospital code for…
Morley Companies data breach $4.3M class action settlement
Top Class Actions reports: Morley Companies Inc. has set aside $4.3 million to settle a class action lawsuit following a ransomware attack that compromised data from its clients and customers. The settlement class, which has been directly notified of the settlement, is defined as U.S. residents whose data was compromised during the data incident the…
Fertility Centers of Illinois data breach $450K class action settlement
Top Class Actions reports: Fertility Centers of Illinois (FCI) agreed to pay $450,000 to end claims it allowed a 2021 data breach through subpar cybersecurity measures. The settlement benefits consumers who were impacted by Fertility Centers of Illinois’ data breach Feb. 1, 2021. Class members may have been sent a notification about the breach from…
Recent decision by the PDPC
During the pandemic, a lot of entities took steps to collect information to try to limit the spread of COVID. Thomson Medical had a portal for visitors, but instead of the data being stored in a secured database, it was stored in both a secured database and one that could be accessed by the public….
Hackers selling user data from CoWIN platform on DarkWeb
Times Now reports: Only a few weeks after hackers breached India’s premier government hospital, AIIMS Delhi, they have moved on to the Indian government’s web portal for COVID-19 vaccination, CoWIN.gov.in, selling sensitive information to the highest bidder on the Dark Web. […] The evidence provided by the hacker consists of screen captures of the portal’s administrative interface, which…