In December 2023, DataBreaches added Rockford Gastroenterology Associates (“RGA”) to a list of possible ransomware victims after seeing a listing for them on the leak site for threat actors known as RA World. However, it wasn’t until September 2024 that RGA posted a notice on its website, and not until October that they notified HHS…
Category: Health Data
Cyberattack at French hospital exposes health data of 750,000 patients
Bill Toulas reports: A data breach at an unnamed French hospital exposed the medical records of 750,000 patients after a threat actor gained access to its electronic patient record system. A threat actor using the nickname ‘nears’ (previously near2tlg) claimed to have attacked multiple healthcare facilities in France, alleging that they have access to the patient…
NY: Equinox notifies clients and employees of April data security incident
On November 15, Equinox notified clients and staff members about what they described as a data security incident on April 29. With a little digging, DataBreaches realized that it was an attack by LockBit3.0. Equinox is a human services organization that serves clients in the capital region of New York State, providing services to 3,500…
Patients at center of data breach case win $65M settlement against Lehigh Valley Health Network
Nicole Leonard reports: A Pennsylvania judge has cleared the way for a $65 million settlement with Lehigh Valley Health Network in a data breach case that involved stolen medical records and nude photos of cancer patients, taken during exams, posted on the dark web by a Russian cybergang. At a hearing Friday in Lackawanna County Court, Senior…
Idaho man who hacked medical entities and made vile threats sentenced to 10 years in prison (1)
An Idaho man who worked as an Information Technology Specialist for Ada County by day has been sentenced to prison for hacking medical offices and threatening his victims if they didn’t pay his ransom demands. Background of the Case In July 2017, DataBreaches reported a hacking incident with a ransom demand where the description of…
Artificial intelligence and cybercrime: implications for individuals and the healthcare sector
Introduction: The malicious use of artificial intelligence has created new types of security threat for both individuals and the healthcare sector. Although artificial intelligence is a fundamental technology of our age, it has enabled the creation of new types of large-scale cyberthreat, and artificial intelligence-based cybercrime has grown rapidly worldwide. Medical data are a prime…