You may see a number of hospitals and covered entities issuing statements this week about a data security incident involving Med-Data (Med-Data, Incorporated). So far, Memorial Hermann, U. of Chicago, Aspirus, and OSF Healthcare have posted notices. Others should be or may be posting soon. Here’s DataBreaches.net’s exclusive report on the incident. Another Day, Another…
Category: Health Data
NZ: Heath board has contacted 50 people affected by software privacy breach
Sam Sherwood reports: About 50 people affected by a software error that allowed patients’ private information to be seen in the Covid-19 vaccination appointment booking system have been contacted by the Canterbury District Health Board (CDHB). The error meant the details of 714 individuals who had registered were potentially able to be viewed. The details included…
Cyber attack – EVK Lippstadt stops patient admission
The situation described in this news report is exactly what all countries must cooperate to prevent — a hospital has been unable to care for patients due to a cyberattack. Patients are being diverted. Hellweg Radio reports (translation): The Evangelical hospital in Lippstadt does not accept any more patients until further notice. This is due to…
Iranian cyberspies target professionals at medical research organizations in the US, Israel
Catalin Cimpanu reports: Hackers linked to Iran have targeted 25 senior professionals at various medical research organizations located in the US and Israel as part of a weeks-long phishing campaign, email security firm Proofpoint revealed today. The attacks are part of a long series of attacks that have repeatedly and increasingly targeted medical and pharmaceutical…
North Texas Woman Guilty in Multimillion-Dollar Conspiracy Involving the Sale of Forged Prescriptions
There’s an update to a case involving theft of patient identity information to support a fraud ring. As in the previous press release by DOJ, they do not mention the identity of the entity whose EHR system was compromised or misused by the criminals. A search on LinkedIn, however, indicates that a Lydia Henslee, who…
MN: Apple Valley Clinic notifies 157,939 patients about Netgain Technology breach
In November, 2020, cloud IT services provider Netgain Technology LLC experienced a ransomware attack that resulted in them taking some of their data centers offline. In December and January, they began notifying some of their clients. In January, Ramsey County notified 8,700 clients of its Family Health Division about the breach. In February, Woodcreek Provider…