Attacks on small to medium-sized medical entities continue, as this week’s breach posts unfortunately attest. Today, Vice Society added Atlanta Perinatal Associates in Georgia to its leak site. As they have done in the past, Vice Society did not just add the medical practice with a warning or threat. When Vice Society adds an entity,…
Category: Health Data
Settlement in Solara Medical Supplies litigation gets preliminary approval
As reported by TopClassActions, Solara Medical Supplies has agreed to a $9.76 million class action settlement benefiting those whose personal information may have been compromised during a 2019 data breach that occurred between April 2 and June 20, 2019. That would include employees and patients whose protected health information was in employee email accounts compromised…
Immediate care facility in Chicago hacked in December. Do patients know? (UPDATE1)
Approximately 43,000 patients of an immediate care facility and its associated primary care practice in Chicago may or may not know it yet, but threat actors gained access to protected health information in December and proceeded to remove more than 500 GB of files between December and May 10. Or so the threat actors claim….
Behavioral health entities in Massachusetts and Ohio reportedly victims of cyberattacks
DataBreaches.net has found two behavioral health entities that reportedly or allegedly experienced recent cyberattacks involving protected health information of patients. The first, Behavioral Health Partners of Metrowest (BHPMW), describes itself as a partnership that brings together leading social services and behavioral health agencies serving the Greater MetroWest region of Massachusetts. Together, they write, Family Continuity,…
Christus Health ransomware incident involved theft of sensitive patient and employee data
First, the good news (such as it is): a ransomware attack on Christus Health by Avos Locker has not impacted patient care. Now, the bad news: the threat actors acquired — and have already leaked — a lot of sensitive information on patients and employees. On May 11, Avos Locker added Christus Health to their…
IN: Schneck Medical Center notifying patients about data security incident
Schneck Medical Center announced Friday that it was notifying “a limited number” of patients of a data security incident that resulted in the access and exfiltration of some files containing protected health information (PHI). They do not indicate how many patients are being notified and the incident does not yet appear on HHS’s public breach…