Jessica Lyons reports: Quest Diagnostics has agreed to pay almost $5 million to settle allegations it illegally dumped protected health information – and hazardous waste – at its facilities across California. This sum won’t hurt at all for the corporation, one of the largest clinical medical lab networks in the US. In all, Quest is…
Category: Health Data
20+ hospitals in Romania hit hard by ransomware attack on IT service provider
Graham Cluley reports: Over 20 hospitals in Bucharest have reportedly been impacted by a ransomware attack after cybercriminals targeted an IT service provider. As a consequence medical staff have been forced to use pen-and-paper rather than computer systems. Romania’s National Cybersecurity Directorate (DNSC) said in a statement that the attackers encrypted hospital data using the Backmydata ransomware…
Data breach of two third-party payment operators affects more than 33 million in France: CNIL opens an investigation
Google translation of some of CNIL’s report: The CNIL was informed by Viamedis and Almerys of the computer attack to which they were victims at the end of January. These operators, who manage third-party payment for complementary health insurance, saw the data necessary for their missions be compromised during this breach. In total, this data leak concerns more than 33…
Cyberattack at Armentières hospital, emergency rooms closed for the day
ANM reports: The Armentières hospital center was the victim of a cyberattack during the night from Saturday to Sunday at 2 a.m., France Bleu Nord learned on Sunday February 11 from the hospital management. The pirates demand a ransom from the hospital. The emergency department is closed for the next 24 hours, patients are being…
BakerHostetler Files Amicus Brief on Behalf of 30 Hospitals and Health Systems
BakerHostetler writes: As noted back in December 2022, the U.S. Department of Health and Human Services Office for Civil Rights (OCR) has issued dramatic guidance (often called the Bulletin) that targets the use of so-called Internet “tracking technologies” on the public websites of HIPAA-covered entities. Fueled by this guidance, healthcare providers have faced a dual threat…
Lawsuits Involving GoAnywhere Data Breach Consolidated at One Florida Federal Court
The ransomware gang known as Clop created massive headaches for numerous entities with attacks involving the exploitation of vulnerabilities in file transfer software. Since December 2020, the same gang exploited vulnerabilities in Accellion, Fortra’s GoAnywhere software, and Progress Software’s MOVEit software. Christopher Brown reports a litigation update in cases stemming from the GoAnywhere breach disclosed…