Like many other healthcare entities, Oregon Anesthesiology Group, P.C. (OAG) became the victim of a ransomware attack this year. But somewhat atypically, the FBI seems to have seized a threat actor’s account that had their patient data. According to OAG’s statement of December 6, the medical group experienced what they described as a cyberattack that…
Category: Health Data
Woman finds medical records stacked next to recycling bin in Sharpstown neighborhood
Re’Chelle Turner reports: A woman said she discovered medical records, which included private information, which was left in the middle of a southwest Houston neighborhood. “I was shocked with all the HIPPA [sic] rules now. I was very surprised,” she said. The woman, who did not want to be identified, said she saw something unusual…
MA: Northeastern Cancels Vaccination Clinics After Third-Party Information Leak
Jay Willett reports: COVID-19 vaccination clinics scheduled on Northeastern University’s Boston campus have been cancelled following the discovery of registrants’ personal information being exposed by Pelmeds, a third-party vaccine provider. In a statement shared with WBZ NewsRadio, Northeastern said that the information was present on Pelmeds’ website. “As soon as the university became aware of…
Optometry services provider and specialty pharmacy services both report breaches
As many people left for the weekend or were thinking about holiday shopping, two more HIPAA-covered entities disclosed breaches involving protected health information (PHI): optometry services provider Simon Eye Management and specialty pharmacy services provider BioPlus Specialty Pharmacy Services, LLC. Neither disclosure, described below, reported any malware or ransomware component to their breaches. By the…
Brazilian Ministry of Health suffers cyberattack and COVID-19 vaccination data vanishes
Angelica Mari reports: Websites under Brazil’s Ministry of Health (MoH) have suffered a major ransomware attack that resulted in the unavailability of COVID-19 vaccination data of millions of citizens. Following that attack that took place at around 1 am today, all of MoH’s websites including ConecteSUS, which tracks the trajectory of citizens in the public…
Ie: Hackers accessed HSE system eight weeks before cyber attack
Dyane Connor reports: The cyber attackers who hacked the Health Service Executive’s IT system, had accessed the system eight weeks before it detonated the malicious software, which caused devastating disruption across healthcare services. A report by PricewaterhouseCoopers (PwC) has found there were several “missed opportunities” after a phishing email was opened allowing the attacker access…