It’s one thing to ignore ransom demands from threat actors, but how smart — or foolish — is it to be sarcastic or insulting to those who have exfiltrated files with your patients’ protected health information? DataBreaches.net was recently contacted by threat actors who were previously associated with other groups. They claimed to have attacked…
Category: Health Data
COVID Test Data Breach at British School
Sarah Coble reports: A mix-up at a school in Worcestershire, England, caused parents to receive the COVID-19 test results of other people’s children. The data breach, reported today by the Evesham Journal, occurred at co-educational secondary school and sixth-form college The De Montfort School (TDMS) in Evesham, which is part of the Four Stones Multi Academy…
Jefferson Surgical Clinic notifies 174,769 about June, 2021 data breach
If a covered entity detects a breach at the beginning of June 2021 but doesn’t notify patients until January 2022, will HHS think this is just fine? What if there was no encryption of data involved? Is it acceptable to take 7 months to notify patients if there are no unusual circumstances or request from…
Health Ministry Responds to Massive Data Leak of Medical Records of Indonesian Patients
Tempo.co reports: Reports have emerged about an alleged massive data leak of Indonesian hospital patients’ medical information being sold in an illegal internet forum. Hackers claimed to have breached the Indonesian Health Ministry centralized server to obtain the data. According to a report by Antaranews, the data that were sold in the dark web contains 720 GB of personal medical…
Administrative fine imposed on psychotherapy centre Vastaamo for data protection violations
A hack and extortion attempt involving the psychotherapy center in Vastaamo, Finland was — and remains — one of the worst breaches ever covered on PogoWasRight.org and DataBreaches.net because it involved the sensitive mental health information of tens of thousands of patients and a coverup by an executive of the clinic. Now EDPB has posted…
UK: Black Country hospital trust suffers ‘significant IT data loss’
Lisa O’Brien reports: The NHS trust which runs hospitals in Sandwell and Birmingham experienced a ‘significant IT data loss incident’ which ‘impacted upon staff and patient care’, a health chief has revealed. It is understood the incident happened last month and is said to have ‘disrupted’ over 20 systems across Sandwell and West Birmingham Hospitals…