And yet another breach disclosed at the beginning of a holiday weekend – this one posted by the State of Alaska: September 1, 2017 ANCHORAGE – The Alaska Department of Health and Social Services had a security breach that may have disclosed personal information of individuals who have interacted with the Office of Children’s Services….
Category: Health Data
The Neurology Foundation discloses employee wrongdoing
Yes, let’s release a breach notification at 5 pm on the Friday of a big holiday weekend…. In this case, it’s The Neurology Foundation in Rhode Island, reporting on an incident involving employee wrongdoing. You can read the full press release here. Note that although the problem was discovered months ago, notification of the breach was…
EXCLUSIVE: Hand Rehabilitation Specialists notifies patients of possible hack by TheDarkOverlord
Back around the Fourth of July holiday, I was busy attempting to confirm some claimed hacks by TheDarkOverlord (TDO). And no, I’m not referring to any entities I’ve previously named on this site, but yet other healthcare entities I’ve never named. In encrypted chats, TDO had provided me with samples of patient data from approximately…
Medical Oncology Hematology Consultants notifies 19,203 patients after ransomware incident
Medical Oncology Hematology Consultants, PA in Delaware recently reported a ransomware attack to HHS that affected 19,203 patients. The attack began on June 17, but wasn’t discovered until July 7. The practice notes that there was no indication that any PHI was accessed, much less acquired. I was impressed by their robust response to the incident…
Yet another breach due to envelope windows?! CVS Caremark exposes patients’ HIV status in mailings
I can almost hear Yogi Berra saying, “It’s deja vu all over again.” Lou Chibbaro Jr. reports: CVS Caremark, a division of the CVS pharmacy and healthcare company, abruptly discontinued a mailing last week to patients in Ohio receiving HIV-related medication from the company after it learned that a reference to “HIV” appeared above the…
Largest healthcare provider in western New York successfully phished in two consecutive months
Having to notify almost 2,800 patients because an employee fell for a phishing attack is not something most healthcare providers would exactly relish. Having to notify 2,800 patients in July and then another 744 patients in August because there were phishing incidents in two consecutive months, well,….. ouch. But that’s the situation Kaleida Health in…