It’s bad enough experiencing one ransomware attack. Imagine experiencing two, because that’s what Episcopal Retirement Services (ERS) in Ohio has been dealing with. On or about September 24, ERS discovered that i had been the victim of what it describes as a cyberattack that impacted its systems and servers. Then on October 22, they experienced…
Category: Health Data
Brussels health authorities deny data violation on vaccination platform
Lauren Walker reports: A legal analysis has shown Brussels’ vaccination platform Bru-Vax respects personal data, Brussels health authorities’ have announced, following criticism of a data leak regarding people’s vaccination status. Earlier this week, it was reported that people, for example, employers, insurers or banks, could find out if a Brussels resident had been vaccinated by simply entering…
Update: Eskenazi patients receive letter in the mail alerting them of cyber security breach 6 months ago
Bianca Reyes has an update on the Eskenazi ransomware incident that this site has been reporting on since August: Roughly three months after Eskenazi Health released a statement announcing a cyber security breach that compromised personal data, some patients are just now receiving that news in the mail. According to this release posted last month, Eskenazi…
Data Breach Rule for Health Apps Leaves Developers in the Dark
Christopher Brown reports: Makers of health apps are scrambling to understand the extent of their legal liability after a divided Federal Trade Commission announced they’re now required to inform users about data and privacy breaches—and if they have used their customers’ health data without authorization. The commission approved 3-2 a policy statement that the makers of health…
Officials confirm patient data stolen in N.L. cyberattack
CBC News reports: Officials have confirmed that personal information of medical patients in Newfoundland and Labrador has been stolen in the cyberattack that has wreaked havoc on the provincial health-care system for over two weeks. While speaking with reporters on Monday, Justice Minister John Hogan said it was his understanding that both patient and employee…
When I emailed Overlake OB/GYN in July about a ransomware attack in 2020, I didn’t anticipate what would happen next.
In December, 2019, Overlake Medical Center & Clinics discovered that some employees had fallen for a phishing scheme. On February 7, 2020, they reported the incident to HHS as impacting 109,234 patients. As HHS subsequently summarized things: After the breach, the [Covered Entity] implemented additional administrative and technical safeguards and retrained its staff on the…