As background: this case began with someone finding an unsecured FTP server owned by MedEvolve. He reported it to DataBreaches. This site first reported on the leak in 2018. This site also reported when MedEvolve issued a statement months later, and again two years later when HHS got them to notify patients. Today, the U.S….
Category: Health Data
Patients concerned after local allergy clinic closes its doors because of alleged data breach
KOCO reports: A local asthma and allergy clinic has closed its doors because of an alleged security data breach. Patients are now concerned that their medical records may have been compromised. Several patients have told KOCO that they are in need of asthma medication from the Oklahoma Institute of Allergy Asthma and Immunology but have…
Russian National Charged with Ransomware Attacks Against Critical Infrastructure
The Justice Department today unsealed two indictments charging a Russian national and resident with using three different ransomware variants to attack numerous victims throughout the United States, including law enforcement agencies in Washington, D.C. and New Jersey, as well as victims in healthcare and other sectors nationwide. According to the indictment obtained in the District…
Another business associate attacked: 286,699 patients being notified of attack on medical debt collection firm (UPDATED)
Update of May 22: R&B Corporation of Virginia d/b/a Credit Control Corporation reported the incident to HHS on May 13 as affecting even more people than had been reported to Maine. They reported 345,523 patients were affected. Nicole Livas reports: A security breach of patient accounts may have put your private information at risk. Credit Control Corporation…
Warnings over NHS data privacy after ‘stalker’ doctor shares woman’s records
Today’s reminder that insider snooping can leave patients anxious, angry, and distrustful of ever sharing their protected health information again — even if they are not the patient who was victimized. Denis Campbell reports on an insider snooping case involving the UK’s NHS: The confidentiality of NHS medical records has been thrown into doubt after a “stalker”…
Ransomware attack on PharMerica affected 5.8 million patients
While the Fortra/GoAnywhere data breach by Clop is shaping up to be the biggest, or one of the biggest, breaches affecting HIPAA-covered entities and business associates in 2023, an attack by Money Message on PharMerica is currently the largest single breach reported so far this year, with almost 6 million affected. On April 8, DataBreaches…