On September 15, Oak Valley Hospital District in California notified the state and HHS of a data security incident that began on April 21 and was first discovered on July 18. According to its notification, a copy of which is also posted on its website, Oak Valley could not rule out the possibility of unauthorized…
Category: Health Data
Broomfield Skilled Nursing and Rehabilitation Center settles breach-related charges with Colorado Attorney General
Colorado Attorney General Phil Weiser recently announced a settlement with Broomfield Skilled Nursing and Rehabilitation Center, LLC stemming from a 2021 data breach. The following is the state’s press release: Sept. 22, 2023 (DENVER) – Attorney General Phil Weiser announced today a settlement with Broomfield Skilled Nursing and Rehabilitation Center, LLC., for failing to protect the personal…
Emerging cybersecurity threats in healthcare | Special Report
Ron Southwick of Chief Healthcare Executive notes what a bad year this has already been in terms of breaches in the healthcare sector, but notes things may even get worse: Even with those dire signs about the dangers of cyberattacks, experts warn that health systems will face new and emerging threats in the years to…
AlphV claims to have hit MNGI Digestive Health — developing
MNGI Digestive Health (MNGI) in Minnesota is a physician-owned multi-center gastroenterology practice that has been recognized for its excellence. MNGI was previously known as Minnesota Gastroenterology, P.A., and was created by partnership of three independent practices: Digestive Healthcare, Gastroenterology Consultants, and St. Paul Gastroenterology. Unfortunately, excellence in medical practice and care does not immunize a…
Ca: Better Outcomes Registry & Network reveals 3.4 million patients affected by MOVEit data breach
BORN (the Better Outcomes Registry & Network) in Canada has disclosed it was affected by the MOVEit breach. From their notice: During the breach, unauthorized copies of files containing personal health information were taken from BORN’s systems. The personal health information that was copied was collected from a large network of mostly Ontario health care…
Ransomware group claimed to have hit a New Jersey cardiology group. Did they?
On September 2, the NoEscape ransomware group added Mulkay Cardiology Consultants to their leak site and claimed to have successfully encrypted them. “We have 60GB of confidential and personal data on more than 30,000 patients, scans, doctor’s conclusions about patients and many other confidential information,” they claimed in their listing about the New Jersey medical…