Paul Farrell reports: A darknet trader is illegally selling the Medicare patient details of any Australian on request by “exploiting a vulnerability” in a government system, raising concerns that a health agency may be seriously compromised. An investigation by Guardian Australia can reveal that a darknet vendor on a popular auction site for illegal products…
Category: Health Data
Medical billing firm exposes unencrypted protected health information
Last month, DataBreaches.net was contacted by Kromtech Security’s research team and asked to assist it in alerting a medical billing firm that they were exposing patients’ personal and protected health information on their backup server. On June 12, DataBreaches.net sent iMax Medical Billing in Ohio a message and left them a voice mail, alerting them…
So many notifications due to ransomware, but are these really necessary?
Another entity has recently notified patients whose protected health information was on a server infected with ransomware. Once again, even though investigation turned up no evidence that any patient’s PHI was actually accessed or exfiltrated, entities are notifying – on the side of caution and/or because HHS requires them to in the absence of firm…
Cove Family & Sports Medicine recovers from ransomware, but loses some data
There are different metrics for describing the impact of a breach, but one of the ones I use in my subjective system is whether patient data that might be needed for care have been lost, stolen, or corrupted. In June, there were a lot of data breaches or security incidents and many involved ransomware. One…
White Blossom Care Center Notifies Residents of Data Security Incident
From their press release: White Blossom Care Center (“White Blossom”) announced today an incident that resulted in the exposure of certain resident information at its facility in San Jose, Calif. It is important to note that, based on the available information, we have no specific evidence that any potentially exposed data has been used inappropriately….
TN: Clinic tells patients disgruntled former employee compromised their records
A local counseling service is notifying its patients that its computer records were recently compromised and private information may be at risk. Professional Counseling and Medical Associates, 849 Volunteer Dr., Suite 2, reported a breach of its electronic health records system, which was copied by a disgruntled former employee who is a healthcare professional. This…