Zack Whittaker reports: A California-based medical startup that provides COVID-19 testing across Los Angeles has pulled down a website it used to allow customers to access their test results after a customer found a vulnerability that allowed access to other people’s personal information. Total Testing Solutions has 10 COVID-19 testing sites across Los Angeles, and processes…
Category: Health Data
Data breach from contact tracing survey ‘low risk’ to Hoosier privacy, 750,000 affected
WANE reports: The Indiana Department of Health announced Tuesday it is notifying nearly 750,000 Hoosiers that data from the state’s COVID-19 online contact tracing survey was improperly accessed back in July. The data included name, address, email, gender, ethnicity and race, and date of birth. “We believe the risk to Hoosiers whose information was accessed…
New details — and data — emerge from Eskenazi Health ransomware incident
On August 4, this site noted that Eskenazi Health in Indiana had reportedly gone on diversion protocols following an attempted ransomware attack. On August 9, the hospital reported that it was still on diversion but that no patient or employee data was affected by the attack – or at least as far as they could…
The Gelre hospital has been attacked by cyber criminals for three weeks
Cybercrimeinfo.nl reports: Hackers have spent three weeks trying to break into the ICT environment of Gelre hospitals. They failed to loot privacy-sensitive data or other information. As a precaution, the healthcare institutions have increased the security measures. Gelre Hospitals (Dutch: Gelre Ziekenhuizen) is a group of hospitals comprising hospitals in Apeldoorn and Zutphen, and an outpatient clinic…
Healthcare provider expected to lose $106.8 million following ransomware attack
Sometimes (but not always), breaches have steep consequences. Catalin Cimpanu reports: Scripps Health, a California-based nonprofit healthcare provider that runs five hospitals and 19 outpatient facilities, said it expects to lose an estimated $106.8 million following a ransomware attack that hit the organization in May 2021. “Operating revenues and operating expenses for the quarter ended…
Exclusive: Attack on HVAC vendor gave threat actor access to Boston Children’s Hospital
If you think about “supply chain attack” and “HVAC,” you will probably immediately think of the headline-making Target breach of 2013. But that wasn’t the only breach via a third-party HVAC vendor. Just this month, several hospitals in Boston may have narrowly escaped potentially serious breaches when their HVAC vendor was hacked and the threat…