Alicia Hope reports: A ransomware attack targeting medical technology firm slowed down clinical trials for the past two weeks, according to the New York Times. The attack targeted a Philadelphia company that develops software for clinical trials, including the crash effort to develop rapid coronavirus tests, treatment, and the vaccine. The attack on eResearch Technology forced…
Category: Health Data
California AG Settlement Suggests Privacy and Security Practices of Digital Health Apps May Provide Fertile Ground for Enforcement Activity
Libbie Canter, Anna D. Kraus, and Rebecca Yergin of Covington & Burling write: California Attorney General Xavier Becerra (“AG”) announced in September a settlement against Glow, Inc., resolving allegations that the fertility app had “expose[d] millions of women’s personal and medical information.” In the complaint, the AG alleged violations of certain state consumer protection and privacy laws, stemming from privacy…
OH: Potential class action against Health Recovery Services survives motion to dismiss
In April 2019, this site reported on a breach disclosed by Health Recovery Services (HRS). In October, 2019, Troy Foster sued them over the breach. I noted at the time that I was surprised at the claim concerning delayed notification when he had been notified in 60 days. I was not surprised to now read…
Dr Richard Freeman admits losing rider blood data from a third computer
Alex Balinger reports: Dr Richard Freeman has admitted losing rider blood data from a third laptop, this time after the UCI requested information about riders from the Giro d’Italia and Tour de France in 2011. Freeman is currently facing a medical tribunal, which is assessing his fitness to practice medicine after allegations he ordered testosterone with the intention of…
Universal Health Services reports restoration of services and its IT network three weeks after massive ransomware attack
Universal Health Services issued an update to its status following a massive ransomware attack on September 27. Here is the full text of their October 12 update: Universal Health Services (UHS) confirms that the UHS IT Network has been restored at Corporate and across all Acute Care hospitals, enabling connections to all major systems and…
Oswego Health: Some patient data potentially exposed
Ken Sturtz reports: Oswego Health has notified an unspecified number of patients about a potential leak of personal information via an employee email account earlier this year. In a letter sent to affected patients, Oswego Health said it had discovered “potential unauthorized access to an employee email account” between June 11 and June 15. The…