On November 7, West Oaks Eyecare in Texas discovered one of their computer systems had been encrypted by malware. Their investigation into the incident indicated that the threat actor(s) may have accessed patient billing information: We thoroughly reviewed the files involved to determine what information they contained. Based on our review, we identified files that…
Category: Health Data
Toronto hospital network issues ‘code grey’ as digital systems go down
Liam Casey reports: A major Toronto hospital network said its digital systems went down on Monday and it was working to investigate what was causing the outage. The University Health Network issued a “code grey” — a hospital code for system failure — but released few other details about what happened. Read more at CBC….
Consulate Health Care chain hit by Hive
Hive ransomware gang has added another healthcare-related victim to its leak site. This time, the victim is Consulate Health Care (CHC), a chain of service providers with a troubled financial history. Enter Hive, Stage Left Hive’s listing for CHC indicates that they locked CHC’s files on December 3. Hive has already leaked some of what…
HC3: Analyst Note: Clop Ransomware
January 04, 2023 TLP:CLEAR Report: 202301041300 Executive Summary Clop operates under the Ransomware-as-service (RaaS) model, and it was first observed in 2019. Clop was a highly used ransomware in the market and typically targeted organizations with a revenue of $5 million U.S. Dollars (USD) or higher. Since its appearance, HC3 is aware of attacks on…
University of Miami Health breach notice
Remember when Britton White and DataBreaches discussed employees having their work credentials compromised by infostealers and how employers might want to require employees to notify them whenever an employee’s device was compromised if the device had stored login credentials? University of Miami Health posted a breach notice this week that caught my eye. From the…
PA: Maternal & Family Health Services reveals ransomware incident
Maternal & Family Health Services (“MFHS”) in Pennsylvania has issued a press release about what they describe as a “sophisticated ransomware incident.” At this point, given so many ransomware attacks over the past few years, DataBreaches has no idea what would be considered “sophisticated.” In any event, MFHS began notifying potentially affected individuals, including certain…