On April 4, SEIU 775 Benefits Group in Washington experienced abnormal activity in their system and started investigating. Their investigation revealed that an unauthorized individual had gained access to their systems and had deleted some files with personal and protected health information in the process. There was no evidence, however, that the unauthorized individual had…
Category: Health Data
Nexelis Group responds to malware attack on systems formerly owned by Pacific Biomarker
Here’s another breach that has not been in the headlines (or at least, not yet). On November 8, 2020, Nexelis Group discovered that their system had been encrypted by malware. According to the notification letter sent to patients in April, the information was contained on the server of a company that Nexelis recently acquired, Pacific Biomarkers….
Medtronic plc notifies patients after employee’s devices accessed by unauthorized person
It hasn’t been in the headlines — at least not yet — but Medtronic, a well-known medical device company, is notifying some customers after an incident one employee’s devices may have compromised personal or patient information. According to a notification letter, on March 12, an employee’s computer, phone, and iPad were “taken and accessed for…
WA: RX Pharmacy, LTC and RX Pharmacies notify patients after discovering hack of email accounts
KNDO and KNDU in Washington report: RX Pharmacy, LTC and RX Pharmacies says their email has been hacked after detecting suspicious activity and protected health information and/or personal information has potentially been compromised. It was discovered that a business email may have hacked on October 6, 2020. Letters have already gone out to those potentially…
CaptureRx – Notice of Data Incident (Update 3)
NOTE: This post is no longer being updated. Please see this article for updates on this incident. Update of May 17: Add Ascension Standish Hospital (1705} and Ascension St. Joseph Hospital (5807). Update of May 12: Add Walmart to your list of covered entities who had patients impacted by the CaptureRx breach. CaptureRx notified them…
Orthopedic Associates of Dutchess County notifies more than 330,000 patients of breach
On March 5, Orthopedic Associates of Dutchess County in New York (“OADC”) became aware of suspicious activity involving its systems. Their investigation determined that an unauthorized actor gained access to certain OADC systems on or about March 1, 2021, encrypted files, and then claimed to have removed and/or viewed certain files. According to the notification…