In May 2022, DataBreaches reported that ambulance billing service Comstar LLC in Massachusetts was notifying an undisclosed number of people following a data security breach of their system detected on March 26, 2022. On May 26, 2022, they also notified HHS of the incident, reporting that 68,957 patients were affected. Today, HHS OCR announced that…
Category: Health Data
Bradford Health Systems detected abnormal network activity in December 2023. They first sent out breach notices this week.
Bradford Health Systems in Alabama has posted a security notice on its website this week about an incident affecting employee and patient data. It begins: On December 8, 2023, Bradford Health detected unusual activity within its network. Upon discovering this activity, it immediately initiated an investigation of the matter with the assistance of third-party cybersecurity…
Possible ransomware attack disrupts Maine and New Hampshire Covenant Health locations (1)
Updated June 25, 2025: Qilin gang has claimed responsibility for the attack and has posted proof of claims on its leak site. The proof of claims appears to be from personnel/internal files. News Center Maine reports: A cyber incident affecting several hospitals in Maine is now under investigation. Covenant Health shared with NEWS CENTER Maine that…
HHS OCR Settles HIPAA Security Rule Investigation of BayCare Health System for $800k and Corrective Action Plan
HHS OCR has settled another enforcement action involving the HIPAA Security Rule. From their press release yesterday, it sounds like an insider wrongdoing case. In its formal resolution agreement, the government states that on October 23, 2018, OCR received a complaint alleging that on October 8, 2018, an unknown third party accessed her printed and…
UK: Two NHS trusts hit by cyberattack that exploited Ivanti flaw
It’s been an all-too-common headline over the past decade. Now, two more National Health Service trusts in the U.K. have been impacted by cyberattacks, although there is no indication yet that patient data was accessed or patient services were affected. Emma Woollacott reports: Two NHS trusts have suffered cyber attacks which exposed staff data, prompting…
Update: ALN Medical Management’s Data Breach Total Soars to More than 1.8 Million Patients Affected
Marianne Kolbasuk McGee reports: The number of people affected by a March 2024 hack on a healthcare revenue cycle management and billing services provider has soared in recent weeks to more than 1.82 million, as the company continues to file updated breach reports to state and federal regulators. ALN Medical Management, which court documents indicate…