U.S. Dermatology Partners, which has over 100 locations across eight states, recently posted a notice of a data security incident on its website. As stated in their notice: On June 19, 2024, USDP experienced a network disruption. Upon detecting the incident, we quickly took steps to secure our network, immediately initiated our incident response processes…
Category: Health Data
Ransomware group Gunra claims to have exfiltrated 450 million patient records from American Hospital Dubai (1)
A relatively new ransomware group calling themself “Gunra” has shown it has no compunction about attacking hospitals. They have reportedly locked — and have started leaking information from — the American Hospital in Dubai (AHD). In its first listing concerning this attack, Gunra claimed to have exfiltrated the entire Cerner Millenium database (now known as…
Texas gastroenterology and surgical practice victim of ransomware attack
The InterLock ransomware leak site recently added Texas Digestive Specialists to its listings, claiming to have exfiltrated (and leaked) 263 GB of data consisting of 16,920 folders with 215,245 files. Finding no indication of anything amiss or any breach disclosure on the medical group’s website, DataBreaches sampled selectively from the data tranche. We noticed evidence…
Central Maine Healthcare tackles suspected cybersecurity issue; hospitals remain open
Central Maine Healthcare posted a notice on its Facebook page today: On June 1, 2025, technicians monitoring the information systems at Central Maine Healthcare identified unusual activity within the system’s computer software. In response, they immediately secured and shut off all information technology applications and hardware, including network servers and phone systems. Central Maine Medical…
Order of Psychologists of Lombardy fined 30,000 € for inadequate data security protection and detection following ransomware attack
The Privacy Guarantor has fined the Order of Psychologists of the Lombardy Region [Ordine degli psicologi della Lombardia] for 30 thousand euros for not having adopted adequate technical and organizational measures to guarantee data security. The Guarantor intervened following some complaints and the notification of data breach made by the Order, which declared to have…
Class action settlement following ransomware attack will cost Fred Hutchinson Cancer Center about $52 million
Elise Takahama reports a settlement in a lawsuit stemming from a ransomware attack on Fred Hutchinson Cancer Center in Seattle by the Hunters International gang: Fred Hutchinson Cancer Center has agreed to pay about $11.5 million to patients after a 2023 cyberattack put their personal data at risk. Hackers targeted parts of Fred Hutch’s clinical…