A Kansas health center has succeeded in getting a potential class action lawsuit against it dismissed for lack of standing. DataBreaches previously reported that Labette Health had disclosed a breach that occurred in October 2021. Now Bloomberg Law reports that plaintiffs’ claims that Labette violated state consumer protection law failed to demonstrate that they had…
Category: Health Data
Federal and state authorities investigate a data breach at Philadelphia-area OB/GYN practice
Wendy Ruderman reports: Federal and state authorities are looking into allegations that a Main Line Women’s Healthcare employee used a personal cellphone to capture confidential information from medical charts, potentially affecting more than 800 patients at the OB/GYN practice, which has offices in King of Prussia, Malvern, Plymouth Meeting and Bryn Mawr. Read more at…
CISA Alert: Daixin Team
[Comment: I’ve been waiting for this since I first suspected that Daixin Team might be responsible for the CommonSpirit breach. And although it has not been confirmed by anyone, I still suspect them of that one. — Dissent] Alert (AA22-294A) #StopRansomware: Daixin Team Download the PDF version of this report: pdf, 591 KB Technical Details Note:…
NC investigating claims Facebook received WakeMed, Duke Health patient data
Lauren Ohnesorge reports: A month after a federal lawsuit alleged Triangle hospitals disclosed patient phone numbers and other information to Facebook (Nasdaq: META) without permission, North Carolina officials confirm the state is also investigating. The accusations involve Facebook’s Pixel tracking tool, which plaintiff attorneys in multiple lawsuits filed across the country claim is being improperly used…
French maternity hospital hit by ransomware attack by Vice Society; attackers claim to have 150 GB of files
Le Journal du Dimanche reports that a private maternity hospital in France, Hôpital Pierre Rouquès – Les Bluets was the victim of a cyberattack by Vice Society on October 9. A notice on the hospital’s home page alerts people to the attack and that their email system does not work. [Note: there is also a…
New York Department of Financial Services settles charges against EyeMed with a $4.5 million penalty and remedial cybersecurity plan
In January 2022, DataBreaches reported that New York announced a $600,000 agreement with EyeMed that resolved a 2020 phishing incident that compromised the personal information of approximately 2.1 million consumers nationwide, including 98,632 in New York. But that was not the end of enforcement action and monetary penalties for EyeMed. Now the state’s Department of…