Plastic surgery groups continue to be an attractive target for threat actors, and this week we learned that Transform Hospital Group in the U.K. has been attacked by REvil (Sodinokibi) ransomware threat actors. As proof, the REvil posted some screen shots of directories (a portion of one appears below). In a post on their dark…
Category: Health Data
Leon Medical Center confirms ransomware attack, credits employees and staff with providing quality care despite attack
One of the medical entities recently identified as a victim of a ransomware attack is Leon Medical Centers (LMC) in Florida. Founded in 1996, LMC expanded over the years into a comprehensive outpatient healthcare system that includes seven medical centers among other healthcare services. LMC offers a range of services to Medicare patients as well…
FR: Albertville hospital victim of ransomware attack
Justine Leblond reports (translation): Since 4 am, this Monday, December 21, the Center Hospitalier Albertville-Moûtiers (CHAM) has been the victim of a cyber attack. Several sites are affected: the two branches in Albertville and Moûtiers, as well as the EHPAD and the Claude Léger and Les Cordeliers long-term care units. Several equipment, servers, software and part of the…
Proliance Surgeons, Inc. Notifies Customers of Data Security Incident
Why are they calling them “customers” and not “patients?” I’m confused by this press release, below. Were these payment cards the patients’ payment cards/payment info? If so, it’s still protected health information of patients. I’ve reached out to the entity to request clarification. Update: A spokesperson says that the payment cards were not the patients’…
One year later, Saskatchewan government still isn’t sure what data were exfiltrated in cyberattack
Back in June, Canadian news outlets provided an update on a ransomware attack on Saskatchewan’s eHealth system that had occurred on December 20, 2019. Now as the year draws to a close, the government still doesn’t know whether personal information was compromised in the attack. And no, this is not uncommon. It is often very…
Vn: Leaky Server Exposes 12 Million Medical Records to Meow Attacker
Phil Muncaster reports: A healthcare technology company leaked 12 million records on patients including highly sensitive diagnoses, before the exposed cloud server was struck by the infamous “meow” attacker, researchers have revealed. A team at SafetyDetectives led by Anurag Sen discovered the leaky Elasticsearch server in late October after a routine IP address scan, although…