The Jacobson Memorial Hospital & Care Center had a breach last year that they are first disclosing this week. Here’s the chronology, based on a statement from their external counsel: July 28, 2020 — One employee’s email account is compromised and used to send out spam. August 5, 2020 — Hospital manages to kick bad…
Category: Health Data
OH: Fisher-Titus Medical Center notified patients; employee email account accessed last year
Brandon Addeo reports: The personal information of patients at Fisher-Titus Medical Center was compromised after an unknown person gained access to an employee’s email account. According to a notice from the Norwalk hospital, someone accessed an employee’s email between August 2020 and October 2020. That email account contained personal information including people’s full names, Social…
French Regulator Lambasts Health Firms Over Mass Data Leak
Helene Fouquet reports: France’s privacy watchdog said it’s investigating the leak of sensitive health data on half a million people and said the companies involved could face heavy penalties if they don’t come forward with details of the breaches. The leaks were of “particularly significant magnitude and severity,” the CNIL said in a statement. Hackers may have…
March 1, 2021: Deadline for Reporting 2020 Small Healthcare Data Breaches
Reminder: March 1, 2021: Deadline for Reporting 2020 Small Healthcare Data Breaches
Insider Cloud Data Theft Plagues Healthcare Sector
Phil Muncaster reports: Over a third (35%) of global healthcare organizations suffered cloud data theft by malicious insiders last year, according to data from Netwrix. The findings come from the security vendor’s 2021 Netwrix Cloud Data Security Report, based on interviews with 937 IT professionals around the world. It claimed that while insider theft was less…
MI: Covenant HealthCare reports data breach through employee emails
Stephen Borowy reports that Covenant HealthCare has been notifying an undisclosed number of patients about a data breach that occurred last May 4 when threat actor(s) accessed two employee email accounts. According to a forensics investigation and document review, the hospital learned on Dec. 21 that the impacted email accounts were accessed on May 4….