The Blackbaud ransomware incident disclosed on July 16 will likely end up being the largest or one of the largest breaches of the year involving patient information. I’ve been reading disclosures from dozens of entities and have compiled a list of those Blackbaud clients whose disclosures state or suggest that Blackbaud had been storing some…
Category: Health Data
SC: In September, Roper St. Francis was busy sending notifications on two separate breaches
On September 3, ABC reported that Roper St. Francis was notifying 6,000 patients about a breach involving their protected health information. This week, you may have read that Roper St. Francis is notifying almost 93,000 patients. There are two unrelated incidents. The first involved the compromise of an employee’s email account in June that the…
CA: Enloe Medical Center also notifying patients after Blackbaud ransomware incident
Add Enloe Medical Center to those notifying donors and patients because of the ransomware incident that Blackbaud disclosed in July. You can read their notification here.
Camrose medical clinic employee penalized after sharing health files: privacy commissioner
Alex Antoneshyn reports: A Camrose medical clinic employee has been fined and given 180 hours of community service after improperly accessing health records of friends and others. According to the office of the privacy commissioner, Olivia Franc accessed the files at the Smith Clinic where she worked. Her employer reported the privacy breach in June…
NorthShore health system reports 348,000 affected by Blackbaud breach
Ugh. I’ve been so busy adding Blackbaud incident-related reports to my worksheets that I maintain for my research with Protenus for Breach Barometer that I forgot to post some incidents here. Thankfully, a kind reader gave me a gentle poke to let you know that Lisa Schenker reported that NorthShore University HealthSystem is notifying approximately 348,000…
Ransomware attack on Saraburi hospital
Apinya Wipatayotin reports: The director of Saraburi Hospital on Wednesday confirmed the hospital computer system had been attacked with ransomware, but said no demand for money was received. Patients were being advised to bring their own medical records and old medicine packaging with them if they visit the hospital. Read more on Bangkok Post. h/t,…