The Office of Inadequate Security
A new listing on Daixin Team’s leak site suggested serious problems for Acadian Ambulance. Acadian Ambulance offers several health-related services, including emergency medical transportation, non-emergency transportation, at-home health care, air services, and medical education. It has locations in Louisiana, Mississippi, Tennessee, and Texas. Acadian has been in business since 1971, and at this point, employees…
This seems to be the month in which many people affected by healthcare breaches in the summer of 2023 are first being notified individually (see, for example, reports on Southcoast Medical and Florida Community Health Centers). Here’s a third one: MNGI Digestive Health was the victim of a cyberattack on August 20, 2023. They reportedly discovered the breach…
Angus Dalton reports: Almost 13 million Australians had personal and health-related data stolen in the MediSecure cyberattack earlier this year, making the mass hack one of the largest ever. The Melbourne-based online prescription service company announced it was the victim of a ransomware data breach in May. A week later, a hacker claiming to possess…
Website Planet reports that Jeremiah Fowler discovered a non-password-protected database that contained 148,000 records belonging to InHouse Physicians — a healthcare provider that offers on-site medical services and wellness programs to organizations, including corporate health and wellness solutions, event medical services, and occupational health programs. The non-password-protected database contained 148,415 PDF documents totalling 12 GB. Each document…
Christopher Snowbeck reports: Second quarter earnings beat analyst expectations at UnitedHealth Group, even as the Minnetonka-based health care giant said it saw more expenses handling the fallout from a massive cyberattack earlier this year. The company now expects cyberattack costs could reach $2.45 billion for the year, including more direct expenses for financial support for…
Updated July 16: It appears that Edward Flynn, LMHC, may not have intended to indicate that his organization had 575,000 people affected by a breach. However, despite multiple attempts and inquiries from DataBreaches, he continues to decline to provide any coherent statement to explain his report to the state in terms of what actually happened…