Marianne Kolbasuk McGee reports on a lawsuit that stems from a breach first reported on this site in March, 2019. She reports: A medical device maker has sued an IT vendor in the wake of an email server migration mishap that exposed the health data of more than 277,000 individuals. The case illustrates the complexities…
Category: Health Data
Damien Bancal
Damien Bancal reports (translation follows): I revealed to you, last November 3, the announced piracy of the pharmaceutical laboratory Expanscience (Mustela…). A second cyberattack, in four months, posted by a group of ransomware operators. After Maze , Egregor explained that he had invited himself to the company’s IT. On November 9, I discovered that the Bailly Creat lab, a French pharmaceutical laboratory specializing…
Eight months after ransomware attack, Advanced Urgent Care of Florida Keys notifies patients
On March 14, DataBreaches.net reported that Advanced Urgent Care of the Florida Keys had been attacked, and patient data dumped. The data dump had been listed on a Russian-language forum known for data dumps, and the threat actor, then known as “m1x,” called the medical group “Malicious Defaulters” because they wouldn’t pay to prevent data…
Patients need to be notified sooner of ransomware dumps
In the past year, we have seen a significant increase in the use of dedicated leak sites where ransomware threat actors post the names of victims and dump some of their data to pressure them to pay demanded ransom. In the U.S., HIPAA gives covered entities no more than 60 days from discovery of a…
UVM Hospital Network Hit by Cyber Attack Restoring Services
NECN reports: Computer experts at the University of Vermont Medical Center are working to restore systems disabled in a cyberattack that have hurt the hospital’s ability to provide some cancer treatments. Officials are working to expand the capacity to provide chemotherapy at the UVM Medical Center in Burlington to seven days per week and three…
Ca: 2 hard drives and documents with personal health info left behind during MLHU move
CTV reports: The Middlesex-London Health Unit (MLHU) is defending itself over a privacy breach earlier this year when papers and two computer hard drives containing personal information and personal health information were left behind at its former headquarters on King Street. It happened during the move to its new location inside Citi Plaza in the…