From a cybersecurity advisory that you need to drop everything and read and then react to proactively. Seriously. The summary alone should make you take note: This joint cybersecurity advisory was coauthored by the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Health and Human Services (HHS)….
Category: Health Data
Ex-Trillium Health employee accused of hacking co-workers, stealing nude photos
Will Cleveland reports: A former technology employee at Trillium Health is accused of accessing the personal information of numerous co-workers and stealing nude photographs and videos of them, the United States Attorney’s Office announced Thursday. Ameer Elashmawy, 28, a former Trillium information systems security support coordinator, is charged with unauthorized access of a protected computer…
Aetna Pays $1,000,000 to Settle Three HIPAA Breaches
A new press release from HHS today reveals that multiple breaches in 2017 contributed to HHS finding significant problems with Aetna: Aetna Life Insurance Company and the affiliated covered entity (Aetna) has agreed to pay $1,000,000 to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) and to…
Update: St. Lawrence Health confirms ransomware attack
Yesterday, this site suggested that reports coming out of the St. Lawrence Health System sounded like a ransomware attack. The system has subsequently confirmed that computers at Canton-Potsdam, Massena and Gouverneur hospitals were hit with ransomware, which the system describes as a never-before seen variant of Ryuk ransomware. Hospital officials also claim that it appears that…
German Infectious Disease Agency Hit by Hackers Days Before Arson Attack: Spiegel
Reuters reports: Germany’s Robert Koch Institute for infectious disease control was hit by a cyber attack days before its headquarters was the target of an arson attempt, Der Spiegel reported on Wednesday. The news weekly, citing the Federal Centre for Information Technology, said the website was knocked out for two hours on Oct. 22 by…
AU: ADHA records two My Health Record security incidents in FY20
Aimee Chanthadavong reports: The agency responsible for oversight of My Health Record has revealed there were two incidents that compromised the medical records system during the 2019-20 financial year. In its annual report, the Australian Digital Health Agency (ADHA) outlined how one matter reported to the Office of the Australian Information Commissioner (OAIC) involved a breach to…