Naomi Diaz reports: Colfax,Wash.-based Whitman Hospital and Medical Clinics’ internal electronic systems are down following a cyberattack. “If you have an appointment at the hospital or any of our clinics on Wednesday, March 5, 2025, please understand there may be delays, however, we remain open and here to care for you,” the hospital wrote in a March…
Category: Health Data
Supreme Court declines to weigh in on FQHC’s patient data security liability
Dave Muoio reports: The Supreme Court has declined to hear a case on whether a Federally Qualified Health Center is immune from liability over a former patient’s stolen personally identifying information (PII). The class-action lawsuit stemmed from a patient who received care and provided that information to Sandhills Medical Foundation, an FQHC, in 2018. The…
HCRG Care’s lawyers claimed an injunction issued in a “private” hearing required us to remove two posts. We didn’t comply.
Occasionally, entities in other countries try to take legal action against DataBreaches.net to chill or censor this site’s reporting on their breaches. None of them have prevailed, in part due to the protections we have here under the First Amendment, and in part to the pro bono legal defense afforded to this site. This is…
Rite Aid Agrees to $6.8M Settlement Over Data Breach Lawsuit
Rihem Akkouche reports: In a dramatic legal turn, Rite Aid has consented to a $6.8 million settlement to resolve class action allegations that it failed to prevent a cyberattack compromising the sensitive information of over 2 million customers. The settlement, preliminarily approved by U.S. District Judge Harvey Bartle III on Tuesday, allows claimants to receive up to…
Japanese cancer hospital confirms breach; Qilin gang claims responsibility
Stefanie Schappert reports: The Qilin ransomware group said it is responsible for the February 10th hack of a prestigious cancer treatment center in Japan, exposing the sensitive health information of 300,000 patients and leaving its hospital system “unusable.” The Utsunomiya Central Clinic (UCC) cancer treatment center first alerted the public to the ransomware attack on…
Data Breach Class Action Dismissed After ‘Alter Ego’ Doctrine Fails
Colleen Murphy reports that a potential class action lawsuit that relied on a legal strategy called the “alter ego doctrine” has been dismissed. Since DataBreaches is not a lawyer and has never heard of this doctrine before, Murphy’s coverage makes for an interesting read. She reports: A group of optical companies secured the dismissal of…