Some reportable HIPAA breaches occur in the context of bad actors trying to re-route wire payments. Monongalia Health System in West Virginia seems to have suffered that type of breach. The incident impacted the email system of Monongalia Health System and its affiliated hospitals, Monongalia County General Hospital Company and Stonewall Jackson Memorial Hospital Company….
Category: Health Data
HSE given stolen data, including medical records, taken by criminals during cyber attack in May
Eilish O’Regan reports: The HSE has been given stolen data, including medical records, obtained by criminals during the May cyber attack, it emerged today. The material was given to the HSE by the Garda National Cyber Crime Bureau who received it from the Department of Justice in the United States under a Mutual Legal Assistance…
Data breaches reported so far this year have surpassed full-year 2020
Jessica Kim Cohen reports: The latest data from the Human Services Department’s Office for Civil Rights show the largest number of healthcare data breaches in a year since regulators started tallying them in 2010. This year’s total beat last year’s by a single incident. These breaches didn’t affect as many patients as the worst year…
Resource: Ransomware attacks on healthcare sector (CyberPeace Institute)
CyberPeace Institute has made a ransomware incident tracer publicly available. The not-for-profit organization compiled and analyzed 295 cyberattacks against the healthcare sector across 35 countries from June 2020 until now. You can access their data and analyses at https://cit.cyberpeaceinstitute.org/explore
TX: Missing document investigation solved after HHSC files found to be in staff’s possession
Avery Travis reports: After a large amount of files containing state documents — and possibly sensitive health information for nursing home residents — were believed to be missing earlier this year, the Texas Health and Human Services Commission determined the records were never missing. A state employee of HHSC’s regulatory division came to KXAN and…
Threat actors pose as pharmacists, get business associates to send them patient records
Harbor Health in Massachusetts has notified at least one patient whose data was compromised by an attack on ScansStat Technologies. According to a December 13 letter from Jesse A. Shipley, HHSI’s Director of Compliance & Risk Management, on November 12, ScansStat Technologies informed them that bad actors posing as pharmacies had managed to get ScansStat…