Medsurant Health in Pennsylvania recently notified HHS that 45,000 patients were impacted by a breach. The patients are not yet being notified, however, because it seems Medsurant is still trying to figure out who needs to be notified. In a statement published November 29, Medsurant stated that they received an email from a threat actor…
Category: Health Data
DNA Diagnostics Center notifying more than 2 million people who used a national genetic testing service
People who had their personal information collected by a national genetic testing organization between 2004 and 2012 may have never known that their information was acquired by DNA Diagnostics Center (DDC) in Ohio in 2012. They may find out now, though, as DDC fell prey to a cyberattack in May and data was exfiltrated over…
Seventh months after initial discovery, Broward Public Schools discloses Conti attack also impacted employees’ health insurance data
In March, 2021, Broward County Public Schools disclosed a breach that captured the public’s attention when Conti threat actors subsequently released a copy of their negotiation chat logs. When negotiations failed to result in an agreement, the threat actors dumped nearly 26,000 files on their dark web and clearnet leak sites. Now, seven months after…
Ca: Headwaters confirms cybersecurity incident: “… many of our systems are down…”
Tabitha Wells reports: Headwaters Health Care Centre has provided an update regarding the suspicious email activity that led to the closure of its COVID-19 assessment centre and affected a number of internal systems. On Friday afternoon (Nov. 26), the hospital posted a second notice to its website, confirming a data breach. Read more on Orangeville.com
OR: One Community Health reports April cyberattack
On September 13, DataBreaches.net added an entry to the monthly worksheet this site maintains for annual data analyses. The entry was for “One Community Health” in Oregon, but it was not the covered entity that announced the breach. DataBreaches.net learned about the breach from Pysa threat actors who had added the covered entity to their…
Alberta Health says privacy breach possible on province’s vaccine passport website
CBC reports: The province’s vaccine record website experienced a possible privacy breach, Alberta Health said in a statement Thursday. Alberta Health says it has received reports of at least 12 users who downloaded the wrong information from the province’s COVID-19 vaccination record website on Wednesday. The record those users downloaded contained the name, date of birth and vaccine…