Longs Peak Family Practice, PC (“LPFP”) is notifying patients following a ransomware and hacking incident that were first detected on November 5. From their notification: LPFP immediately began investigating and took actions to attempt to secure the network, but the hacker executed malicious code within the network before it could be stopped. The malicious code…
Category: Health Data
PA: Employee-patient allegedly photographed during surgery files suit against Washington Hospital and others
Barbara Miller reports: An employee of Washington Hospital who had an operation at her workplace filed a complaint in Washington County Court against the institution, a doctor and several co-workers in connection with photos of her private parts that allegedly were taken and later shared. The plaintiff, identified only as Jane Doe, worked as a…
A tale of three leaks, Wednesday edition
On December 6, DataBreaches.net was contacted by researchers who requested help notifying two entities that they were exposing health information due to misconfigured AWS S3 buckets. They would turn out to be a delight to deal with, unlike a third entity that was also leaking information from a misconfigured S3 bucket. So let’s start with…
Colorado Mental Health Institute at Pueblo notified 650 patients after phishing incident
The Colorado Mental Health Institute at Pueblo is under the state’s Department of Human Services. On December 22, it issued a notice following discovery of a phishing incident that potentially affected 650 patients: The Colorado Mental Health Institute at Pueblo (CMHIP) experienced a potential data breach after a staff member on Nov. 1, unintentionally allowed…
SAY San Diego Provides Notice Of Data Incident
From SAY San Diego, this press release: SAY San Diego (aka Social Advocates for Youth, San Diego) became aware of an incident impacting the security of data relating to certain participants in its Dual Diagnosis youth program, from 2013, and is taking action. Although there is no indication of actual or attempted misuse of participant…
In November, I gave thanks for fewer breach reports
Protenus has released its monthly Breach Barometer, and the statistics for November were something to be thankful for – even if they turn out to be just a brief break from the crush of breach reports we’ve seen every month. As Protenus reports, there were 28 incidents first disclosed during November. We were able to…