December 27 NEW YORK – New York Attorney General Letitia James today secured $300,000 from The NewYork-Presbyterian Hospital (NYP) for disclosing the health information of individuals who visited their website. An investigation by the Office of the Attorney General (OAG) found that the hospital used advertising tools on its website that collected and shared private and personal…
Category: Health Data
Recent attacks on Fred Hutch and Integris: Is attempting to extort patients directly becoming the “new normal?”
DataBreaches previously reported a breach involving Integris Health in Oklahoma. The incident did not involve encryption, but the threat actors were reportedly contacting patients directly and offering to remove their protected health information for a small fee before leaking or selling the data of what they claim is more than two million patients. DataBreaches noted…
German hospital system hit by cyberattack
The Catholic Hospital Association of East Westphalia, is a network of six hospitals: the Franziskus Hospital Bielefeld, the Sankt Elisabeth Hospital Gütersloh, the Sankt Lucia Hospital in Harsewinkel, the Marienhospital Oelde, the Mathilden Hospital Herford and the Sankt Vinzenz Hospital Rheda-Wiedenbrück. As seen on the health system’s website at KHO.de: IT system failure after cyber…
Integris Health notifying patients of hack and warning them not to respond to the hackers
On December 24, Integris Health of Oklahoma started contacting patients about a cyberattack on November 28. The unnamed threat actors did not encrypt any of the health system’s files, but Integris learned that patients were being contacted directly by threat actors. Integris has posted a notice with updates and an FAQ to help inform those…
Abdali Hospital Cyberattack: Hackers Demand 10 BTC Ransom After Breach
Samiksha Jain reports: The hackers, who go by the name Rhysida, posted a cryptic message that read, “6 days 23:46:53.” This ominous countdown suggests a looming threat, possibly indicating the time remaining for potential buyers to bid on exclusive and sensitive data. The hackers, known for their brazen tactics, are offering the data for sale at…
Au: St Vincent’s unable to confirm if medical records stolen
Jess Malcolm and Greg Brown report: One of Australia’s largest health networks that was the target of a cyber security breach has no idea whether hackers stole private medical data almost a week after the attack. St Vincent’s hospital on Monday confirmed it did not know whether sensitive health records had been taken, sparking concern the…