In November, 2020, cloud IT services provider Netgain Technology LLC experienced a ransomware attack that resulted in them taking some of their data centers offline. In December and January, they began notifying some of their clients. In January, Ramsey County notified 8,700 clients of its Family Health Division about the breach. In February, Woodcreek Provider…
Category: Health Data
Hackers backdoor PHP source code after internal repo hack
Catalin Cimpanu reports: Hackers have breached the internal Git repository of the PHP programming language and have added a backdoor to the PHP source code in an attack that took place over the weekend, on Sunday, March 28. The backdoor mechanism was first spotted by Michael Voříšek, a Czech-based software engineer. If the malicious code had made it…
NC: Lexington Medical Center discloses vendor’s patient records data breach
Richard Craver reports: Lexington Medical Center said Friday that some patients have been affected by a data breach into the information technology platform of former third-party vendor Healthgrades Operating Co. Inc. The hospital said affected patients are being mailed notices by Healthgrades about the security incident. Healthgrades had assisted the hospital with patient and community…
NZ: Canterbury District Health Board apologizes for software privacy breach
Lee Kenny reports: Canterbury District Health Board (CDHB) has apologised for a software coding error which allowed people to see other patients’ private information when they booked a Covid-19 vaccination appointment. The error meant the details of 716 individuals who had registered were potentially able to be viewed. Read more on Stuff.
NY: Personal Touch Holding Corp. hit by ransomware attack at MSP, more than 750,000 affected
March 25, 2021 /PRNewswire/ — Today, Personal Touch Holding Corp. (PTHC) announced it is addressing a data breach it discovered on January 27, 2021. PTHC is the parent company of subsidiaries that operate Medicare-certified home health agencies, licensed home care service agencies, hospice at home services and Early Intervention Programs, as well as a managed care plan…
SalusCare sues Amazon to compel production of information about storage bucket used by cyberattacker
NBC2 in Florida reports that SalusCare, a substance abuse and mental health services provider, has disclosed an attack impacting both patient and employee data. According to the news station, SalusCare is not yet certain as to how the attackers gained access, and there is no notice on the entity’s web site as of the time…