In November 2021, Valley Mountain Regional Center (VMRC) notified HHS that multiple employees were the victims of a phishing scheme that compromised the protected health information (PHI) of 17,197 individuals. They notified HHS, affected individuals, media, and provided substitute notice. HHS reports, “In its mitigation efforts, the Business Associate strengthened its technical safeguards to better…
Category: Health Data
Hong Kong private hospital given 4 weeks to submit report over US$10 million ransomware attack
Cannix Yau reports: Hong Kong health authorities have told a private hospital it has four weeks to submit a detailed report after it was hit by a malicious cyberattack and refused to pay a US$10 million ransom. The Department of Health said on Saturday that it was investigating the incident at Union Hospital in Tai…
Medical records of millions stolen in Turkish state hospital data leak
Duvar English reports: A cyber attack on the Bağcılar Training and Research Hospital in Istanbul has leaked all confidential medical records, including X-ray scans and test results, taken at the hospital since 2007, according to reporting by the online news outlet Diken. The hackers attacked the information management system on April 12, heavily damaging the visual archive…
Lawsuits mount and cyberattack could cost UnitedHealth Group up to $1.6B this year
Christopher Snowbeck of the Star Tribune in Minnesota is doing some great reporting on the Change Healthcare UnitedHealth Group cyberattack. Yesterday, he did a write-up on a Minneapolis therapy clinic suing Change Healthcare. He reports, in part: Twin Cities Counseling says it hasn’t been able to submit payment claims for more than 100 appointments —…
Data allegedly from Change Healthcare ransomware attack raises more questions than answers (1)
UPDATE: Sometime earlier today, after my communication with RansomHub, they removed the April 15 update described in the post from their listing. It has now been replaced with a note: Change HealthCare – OPTUM Group – United HealthCare Group – FOR SALE The data in now for sale. Anyone interested in the purchase should contact…
Minneapolis therapy clinic sues over cyberattack at UnitedHealth subsidiary
Christopher Snowbeck reports on how the Change Healthcare attack has affected one clinic in Minnesota. His report provides a good illustration of the issues raised by a recent AMA survey of some physicians, reported here previously. From his reporting: Twin Cities Counseling says it hasn’t been able to submit payment claims for more than 100…