CorrectHealth in Georgia is a private provider of healthcare services to incarcerated individuals. In November 2021, they discovered a data breach involving some employees’ email accounts. They did not reveal when the breach occurred, and it seems it took them until July 2022 to investigate and identify the 54,066 individuals they are notifying. Nothing on…
Category: Health Data
Massive cyberattack leads to class action suit against provider chain Avamere
John Hall reports: Attorneys representing a potentially large group of residents and employees of nursing home behemoth Avamere Holdings announced they have filed a class action suit accusing the long-term care provider of failing to protect its residents and staff from a massive cyberattack. The operator faces the class-action lawsuit over a data breach believed to have affected more…
EmergeOrtho notifying 75,200 patients about ransomware incident
EmergeOrtho in North Carolina has started sending notification letters to patients whose protected health information may have been accessed during a ransomware attack in May. According to a notification template seen by DataBreaches, EmergeOrtho discovered and blocked a ransomware attack on May 18. Their letter does not specifically state whether any files were encrypted, and…
New York medical practices hit by “Bl00dy Ransomware Gang”
Is “Bl00dy Ransomware Gang” a new ransomware group on the scene, a rebrand, or neither? In July, a new channel appeared on Telegram called the “Bl00dy Ransomware Gang.” In August, information about alleged victims started to appear. So far, the gang has leaked some data allegedly from three victims in two incidents. In each case,…
‘Crisis’ for Utah prisoners as medical records glitch scrambles prescription info
We don’t see many breach reports involving lost devices these days, but records can also be lost due to other causes, such as cyberattacks that encrypt or corrupt files or attacks that delete records where there is no backup. In this case, records were lost during a move to a new facility and transition to…
NHS cyberattack causing ‘total chaos’ in hospitals could take a year to recover
Rebecca Thomas reports: It could take more than a year for hospitals to recover patient record systems following the recent NHS cyberattack, The Independent has learned. Hospitals impacted are likely to need two weeks to recover for every day the situation goes unresolved, according to NHS sources. While initial attention following the ransomware attack on Advantage software was its impact on…