William Ralston reminds us how devastating the Vastaamo breach and ransom incident has been: Jukka-Pekka Puro will never forget 2017. Facing the heartbreak of a divorce, Puro, a university lecturer in Turku, southwestern Finland, found himself tussling with depression. This spiralled into suicidal ideations when doctors told him he had aggressive kidney cancer, and no…
Category: Health Data
GE puts default password in radiology devices, leaving healthcare networks exposed
Dan Goodin reports: Dozens of radiology products from GE Healthcare contain a critical vulnerability that threatens the networks of hospitals and other health providers that use the devices, officials from the US government and a private security firm said on Tuesday. The devices—used for CT scans, MRIs, X-Rays, mammograms, ultrasounds, and positron emission tomography—use a…
Mercy Health discloses an insider breach, fires the employee
The following press release gives no indication as to how many patients were impacted, or what the employee’s motivation might have been. Was this just a curiosity/snooping situation, or was there some other motive? ST. LOUIS, Dec. 4, 2020 /PRNewswire/ — This news release is being issued to provide notice about a medical records privacy incident…
MD: Ransomware impacted Greater Baltimore Medical Center’s information technology systems
Theo Hayes reports: Computer systems were down Sunday at the Greater Baltimore Medical Center due to ransomware, 11 News has learned. GBMC released a statement, saying: “On the morning of Sunday, Dec. 6, 2020, GBMC HealthCare detected a ransomware incident that impacted information technology systems. Although many of our systems are down, GBMC HealthCare has…
AT: Corona mass tests: Cyber attack and data breach paralyzed website
Josef Gebhard reports (translated): On Wednesday midnight, the website of the Ministry of Health went online, where you can register for the corona mass tests. For now, the offer is only available for Vienna, where the tests will start at three locations next Friday. But just a few hours after www.österreich-testet.at started , the first problems arose . Numerous users complained…
Update on Dyras Dental ransomware attack
On September 24, DataBreaches.net contacted Dyras Dental in Lansing, Michigan to ask about Egregor threat actors’ claim that they had attacked them and exfiltrated data. Dyras Dental did not respond to that contact or to my subsequent DM to them on Twitter. On October 5, not seeing anything on Dyras Dental’s web site or Twitter…