TechCrunch recently did its annual write-up of badly handled data security incidents. The following wasn’t in it but is one of the worst security and privacy failures that I’ve ever read, and that’s saying a lot. This case stems from a ransomware attack by Medusa Locker in October 2020 that is first being seriously addressed…
Threat actors’ leak site unreachable due to DoS attack; DataBreaches given exclusive preview of leak Marc Fortier reports: The hackers behind a major cyberattack that hit the State of Rhode Island’s online system for delivering health and human service benefits have released some residents’ files to a site on the dark web, state officials announced Monday. “Unfortunately,…
December 23, Nashville – A federal indictment returned last week and unsealed on Friday charges Jamestown pharmacist Philip Hall, 48, with 9 counts of Health Care Fraud and 6 counts of Aggravated Identity Theft, announced Acting United States Attorney for the Middle District of Tennessee Thomas J. Jaworski. According to the indictment, Hall was a licensed…
Marney Carmichael reports on an incident in Ontario, Canada: Halton region says a privacy breach at Allendale Long-Term Care Home in Milton exposed personal electronic health records from 2005 to this summer. A cybersecurity incident in June of this year involving third-party software led to unauthorized access of residents’ personal data, including names, health details…
Alex Evans reports: Unauthorized access of HIPAA-protected information by county employee, largely flies under the radar. Six-months after the Douglas County Department of Health and Human Services determined an employee had accessed protected personal and health information without authorization, a notice appeared on the county’s website. That notice can be found here. Fox21 reports some…
Sarah Volpenhein reports: Nearly 5.6 million people were affected in the ransomware attack that hit Ascension in May, the national health system now says. Until now, the health system had not publicly disclosed the total number of people affected by the May ransomware attack that compromised patient data and ultimately caused major disruptions to patient…