What happens when threat actors leak data on the dark web but the victim entity doesn’t access it in time to figure out what was leaked? That’s what happened to PruittHealth in Georgia last year. How many people are they notifying because they can’t figure out what was accessed, acquired, or leaked? In November 2023,…
Category: Health Data
Numotion data breach affected 602,265 patients
In March 2023, United Seating and Mobility, LLC, d/b/a Numotion (“Numotion”) paid the government $7 million to resolve allegations that it made false claims in submitting reimbursement requests to Kentucky Medicaid, two of Kentucky Medicaid’s Managed Care Organization contractors (MCOs), MO HealthNet (Missouri Medicaid), and D.C. Medicaid (archived). Numotion is a nationwide provider of durable…
Update: London NHS hospitals revert to paper records after cyber-attack
Denis Campbell and Dan Milmo report: A cyber-attack thought to have been carried out by a Russian group has forced London NHS hospitals to resurrect long-discarded paper records systems in which porters hand-deliver blood test results because IT networks are disrupted. Guy’s and St Thomas’ trust (GSTT) has gone back to using paper, rather than computers, to…
Critical Incident: London Hospitals Cancel Operations Following Ransomware Incident at Synnovis
James Coker reports: Leading London hospitals have been forced to cancel operations and divert emergency patients following a cyber-attack on a critical supplier. The incident has affected Guy’s and St Thomas’, King’s College Hospital NHS Foundation Trusts and primary care services in South East London, according to a statement from NHS England on June 4….
HHS OCR: Covered entities affected by the Change Healthcare breach may delegate tasks of providing HIPAA breach notifications to Change Healthcare
May 31 – Today, the U.S. Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) published an update to the frequently asked questions (FAQs) webpage concerning the Change Healthcare cybersecurity incident. The webpage, first published on April 19, 2024, provides answers to FAQs concerning the Health Insurance Portability and Accountability Act of 1996 (HIPAA)…
Data protection commissioners ‘want to look wider’ into patient file breach
Cianan Brennan reports: The Data Protection Commission has opened an investigation into the HSE after the personal files of patients were “compromised”. Questions have been raised about “unsuitable locations” in which that data was stored. A spokesperson for the commission said that the inquiry “concerns the storage and retention of personal data contained in paper records…