Brian Krebs reports that he received a tip about physicians’ data up for sale on a darknet marketplace called AlphaBay One of the databases for sale was a large text file called, “Tenet Health Hilton Medical Center” that contained the name, address, Social Security number and other sensitive information on dozens of physicians across the country. Did you ever…
Category: Health Data
LabMD moves to disqualify Commissioner Ramirez from administrative case; also moves to dismiss entire case
As the administrative hearing in FTC v. LabMD gets closer to resuming, there have been two developments to note. The first is that LabMD has moved to disqualify Commissioner Edith Ramirez, alleging that she has been “irrevocably tainted and compromised” by her involvement in the FTC’s response to the House Oversight Committee’s investigation of Tiversa. I do not…
And then there were four five (Ascension Health entities breached)
Now that I know what I’m looking for, I’m finding more evidence of targeted email attacks affecting members of Ascension Health. For previous reports on this incident, read here and here. On March 16, Sacred Heart Health System in Florida posted this notice on their site about a breach they reported to HHS as affecting…
And then there were three (Ascension Health entities breached)
Now can I say, “I told you so?” When Ascension Health wouldn’t answer my question as to whether there were other members who had also had a phishing incident recently other than the two hospitals I had already reported on, I was even more suspicious. Then this afternoon, I discovered that St. Agnes Health Care,…
NC: Patient records removed from abandoned Statesville hospital
Tina Terry reports that a Channel 9 News investigation resulted in crews removing dozens of boxes of patient records from an abandoned Statesville hospital, the old Davis Hospital. Now wait for it: the records were abandoned more than 30 years ago. But according to Davis Hospital, back then, “the hospital was operated by an unrelated organization.” Read…
Oh, those old files left lying around on your server, Saturday edition
It turned out to be no huge deal (thankfully), but after an announcement on Twitter by @Compl3x1ty of a login dump involving a medical group’s site, DataBreaches.net attempted to contact the Lutheran Health Network to alert them that data from the St. Joseph Medical Group had been accessed and dumped. The data dump indicated that an SQL injection had…