Josh Layton reports: Hundreds of patients’ confidential details were found dumped in an unlocked filing cabinet left outside an unused doctors’ surgery. The sensitive personal files were reference cards that included individuals’ names, dates of birth, addresses and NHS numbers. They were left for days in a doorway among piles of leaves outside the former…
Category: Health Data
Planned Parenthood’s Los Angeles clinics hit by ransomware; patient data stolen
Reuters reports: Planned Parenthood’s Los Angeles clinics suffered a ransomware attack in October and personal information of 400,000 patients was stolen, a spokesperson for the women’s reproductive healthcare organization said on Wednesday. Spokesperson John Erickson said an “unauthorized person” gained access to the Los Angeles affiliate’s network between Oct. 9 and 17 and installed ransomware…
Waikato DHB cyberattack: Cancer hub out of action in chaotic aftermath
Natalie Akoori reports that the May ransomware attack by Vice Society threat actors on Waikato District Health Board impacted one of the country’s four regional cancer hubs. According to a contingency planning document put together in the aftermath of the attack and released by the DHB under the Official Information Act, at least 30 cancer…
CarePartners agrees to settle proposed cyberattack class action for up to $3.4 million, but don’t party just yet
Bernise Carolino reports that there is a settlement in a lawsuit against CarePartners in Canada. The proposed class-action lawsuit stemmed from a breach in 2018 that DataBreaches.net investigated and covered on this site. The firms of Howie, Sacks & Henry LLP (HSH), Waddell Phillips PC and Schneider Law Firm represented the plaintiffs, Arthur Redublo and…
Vendors and HIPAA
Matt Fisher of Carium writes: An important part of establishing strong security for an organization rests with how it interacts with its vendors. The creation of a chain of entities creating, interacting with, storing, or otherwise handling sensitive patient information starts at the top, but can easily and frequently go down many layers. Given the…
Quest’s ReproSource faces patient lawsuit over data breach impacting 350K patients
Jessica Davis reports: One month after notifying 350,000 patients of a potential theft of their protected health information, ReproSource Fertility Diagnostics has been sued by a patient over alleged security failings. ReproSource is a clinical laboratory for fertility specialists and a subsidiary of Quest Diagnostics. First disclosed Oct. 8, an attacker hacked into the ReproSource network in…