HHS OCR’s October newsletter begins: Every October, in recognition of National Cybersecurity Awareness Month, the federal government and its partners work to educate stakeholders on cybersecurity awareness and how best to protect the privacy and security of confidential data. Within the health care industry, the HIPAA Security Rule1 applies to covered entities2 and their business associates3 (“regulated entities”)…
Category: Health Data
AU: Medibank’s latest update reveals more woes; My Home Hospital patient info accessed
AU health insurer Medibank has been diligently providing updates on a massive data breach. With each update, they have revealed growing awareness of how much personal data has been accessed or exfiltrated. Their latest update, issued overnight, begins: It has become clear overnight that the criminal has accessed patient information relating to My Home Hospital….
Medibank updates incident report; customer data also affected
Medibank has provided yet another update on the ransomware attack previously noted on this site: There has been a further development in Medibank’s cybercrime event, which is subject to a criminal investigation by the Australia Federal Police (AFP). It has become clear that the criminal has taken data that now includes Medibank customer data, in…
Lawsuit against Labette Health dismissed
A Kansas health center has succeeded in getting a potential class action lawsuit against it dismissed for lack of standing. DataBreaches previously reported that Labette Health had disclosed a breach that occurred in October 2021. Now Bloomberg Law reports that plaintiffs’ claims that Labette violated state consumer protection law failed to demonstrate that they had…
Federal and state authorities investigate a data breach at Philadelphia-area OB/GYN practice
Wendy Ruderman reports: Federal and state authorities are looking into allegations that a Main Line Women’s Healthcare employee used a personal cellphone to capture confidential information from medical charts, potentially affecting more than 800 patients at the OB/GYN practice, which has offices in King of Prussia, Malvern, Plymouth Meeting and Bryn Mawr. Read more at…
CISA Alert: Daixin Team
[Comment: I’ve been waiting for this since I first suspected that Daixin Team might be responsible for the CommonSpirit breach. And although it has not been confirmed by anyone, I still suspect them of that one. — Dissent] Alert (AA22-294A) #StopRansomware: Daixin Team Download the PDF version of this report: pdf, 591 KB Technical Details Note:…