Region 8 reports: Participants’ data of St. Bernards Total Life Healthcare, Inc. was breached by a ransomware attack, according to a media release from HIPAA Privacy Officer Daya S. Shipman. PeakTPA, a healthcare management services provider, notified TLH on Jan. 23 of a breach on or about December 28, 2020. Read more on KAIT8. PeakTPA…
Category: Health Data
WI: 900 emails of COVID vaccination registrants accidentally shared in Walworth County
Lake Geneva Regional News reports: Over 900 emails belonging to those who registered for COVID-19 vaccines were accidentally shared with the public. On March 11, the Walworth County Department of Health & Human Services announced a breach of the Health Insurance Portability and Accountability Act (HIPAA) related to its vaccine registration process. Read more on…
NY: Home care agency notifies more than 92,000 after ransomware attack
Back in January, Sodinokibi (REvil) threat actors added Preferred Home Care of New York to their dark web leak site. At the time, the threat actors did what they usually do — they posted a few screencaps as proof of access. The screencaps showed directories of folders and images of identity cards of people working…
Personal information of over 50,000 Premier Diagnostics customers exposed on unsecured server
Diego Romo reports: A Consumer privacy watchdog, “Comparitech,” found that Lehi based company Premier Diagnostics was storing sensitive customer information on a publicly accessible server, leading to a potential data breach for over 50,000 customers. “This data could be in anyone’s hands now,” said Paul Bischoff, editor of comparitech.com. “So, your ID and your medical card are probably…
Multi-state settlement in 2019 American Medical Collection Agency breach
New York Attorney General Letitia James today announced an agreement between a bipartisan coalition of 41 attorneys general from around the nation and the Westchester County debt collection agency Retrieval-Masters Creditors Bureau, d/b/a American Medical Collection Agency (AMCA), that resolves a multistate investigation into the company’s 2019 data breach. The breach exposed the personal information —…
Walmart: Notice of Data Security Incident
On February 16, 2021, Walmart was informed by one of its suppliers that a data hosting service they used was compromised on January 20, 2021. An unauthorized party accessed the service and stole records from that service provider. Some of those records included information about a confined number of Walmart pharmacy patients. Walmart’s information systems…