By July 1, word was circulating that the Baton Rouge General Medical Center in Louisiana had been hit by ransomware. A copy of the ransom note shared with DataBreaches pointed clearly to the Hive group, but when asked about it, Hive’s spokesperson claimed that DataBreaches had “incorrect info.” Since then, the medical center has not…
Category: Health Data
Oklahoma State University – Center for Health Services Pays $875,000 to Settle Hacking Breach
There’s an update to a breach previously reported on this site in 2018. From HHS: Oklahoma State University – Center for Health Sciences (OSU-CHS) has paid $875,000 to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) and agreed to implement a corrective action plan to settle potential…
Long Island Man Convicted of over $600 Million Health Care Fraud, Wire Fraud and Identity Theft Scheme
July 13, 2022 — Earlier today, a federal jury in Central Islip returned a guilty verdict on eight counts of a superseding indictment charging Mathew James with perpetrating an over $600 million health care fraud scheme, which also included wire fraud and aggravated identity theft charges. The verdict followed a six-week trial before United States…
Tenet Healthcare faces lawsuit after Baptist Health System data breach affects 1.2 million patients
Catherine Martin reports: A Texas man has filed a class-action lawsuit against Dallas-based Tenet Healthcare and its affiliate Baptist Health System after the companies experienced a data breach this year that affected more than a million patients. The lawsuit was filed July 5 in Dallas County on behalf of Troy Contreras, one of about 1.2…
US govt warns of Maui ransomware attacks against healthcare orgs
Sergiu Gatlan reports: The FBI, CISA, and the U.S. Treasury Department issued today a joint advisory warning of North-Korean-backed threat actors using Maui ransomware in attacks against Healthcare and Public Health (HPH) organizations. Starting in May 2021, the FBI has responded to and detected multiple Maui ransomware attacks impacting HPH Sector orgs across the U.S….
Family Practice Center discloses a breach from October 2021
DataBreaches really and truly does not understand how entities can take so long to investigate some breaches before disclosing them. If HHS feels that seven months from the first detection of an attack to notification is reasonable or acceptable, then let it change the regulations. If it is not acceptable and HHS wants entities to…