Ashley Cullinane reports: Medical records were found dumped in New Bedford, sparking concern in the community. Private information like social security numbers and licenses are printed in the files, New Bedford Live reported. The records belonged to MD Medical Spa and Wellness Center in Hyannis and Norwell, Massachusetts. The facilities shut down in 2016. Read…
Category: Health Data
Hancock Health pays $55,000 ransom after SamSam locked up 1400 files; no patient data stolen
Samm Quinn has an update on the Hancock Health ransomware incident first reported the other day. The hospital ultimately paid a $55,000 (4 BTC) ransom to regain access to its systems, because although it could restore from backup, it would have taken more time. The hackers targeted more than 1,400 files, the names of every…
Medical records of almost 180,000 patients handed to US firms connected to tobacco industry by British health officials, Telegraph probe reveals
Laura Donnelly reports: The medical records of British cancer victims have been handed to a controversial American firm working for one of the world’s biggest tobacco companies, the Daily Telegraph can reveal. The data covering almost 180,000 patients – every case of lung cancer diagnosed in England over a four year period – was given by…
Hospital hit by ransomware: Attackers demand Bitcoin to release control of system
The Greenfield Reporter notes: Hancock Health fell victim to a cyber attack Thursday, with a hacker demanding Bitcoin to relinquish control of part of the hospital’s computer system. Employees knew something was wrong Thursday night, when the network began running more slowly than normal, senior vice president/chief strategy and innovation officer Rob Matt said. A…
Onco360 and CareMed Specialty Pharmacy Patients Notified of Data Security Incident
Update: This was reported to HHS/OCR as impacting 53,173 patients. Original post: There were a few press releases about breaches that appeared after 3 pm on the Friday of a three-day holiday weekend. This was one of them: A recent data security incident affected patients receiving services from Onco360 and CareMed Specialty Pharmacy. On November…
Website operators are in the dark about privacy violations by third-party scripts
by Steven Englehardt, Gunes Acar, and Arvind Narayanan Recently we revealed that “session replay” scripts on websites record everything you do, like someone looking over your shoulder, and send it to third-party servers. This en-masse data exfiltration inevitably scoops up sensitive, personal information — in real time, as you type it. We released the data…