Here’s another incident where patients are not being offered any mitigation services — in this case, presumably because the entity and its external IT vendor could not find any evidence that ransomware threat actors had ever accessed, copied, or exfiltrated any data. Employment Specialists of Maine is a service provider for adults with mental health…
Category: HIPAA
Cedar Springs Hospital notifies patients of breach after state loses drive with patient data
Yesterday, Cedar Springs Hospital in Colorado issued a press release about an incident that involved the state. They explain: Cedar Springs Hospital recently received a request from its licensing agency, the Colorado Department of Public Health & Environment (“CDPHE”), for certain hospital records. As a licensed healthcare provider, Cedar Springs Hospital is subject to periodic…
Former Elgin Mental Health Center Employee Charged With Identity Theft
CBS Chicago reports: Illinois State Police announced Wednesday that they have arrested a former Elgin Mental Health Center employee on identity theft charges. Kayla Brown, 25, of Country Club Hills, has been charged with a total of four felony counts of identity theft. She is an employee of the Illinois Department of Human Services, which…
More than 1 million patients notified of hack involving Dental Care Alliance
Dental Care Alliance is notifying patients this week of a hacking incident that began on September 18, was discovered October 11, and contained on October 13. Dental Care Alliance, LLC is based in Sarasota Florida, and describe themselves as a dental support organization. As they inform patients on their web site: You won’t see the…
TX: Fraudsters who stole health information to fund spending spree plead guilty
KLTV reports: Two individuals have pleaded guilty to conspiracy to obtain information from a protected computer in the Eastern District of Texas. Demetrius Cervantes, 46, of McKinney, and Amanda Lowry, 40, of Sherman, pleaded guilty to conspiracy to obtain information from a protected computer on Dec. 3, 2020. Their co-conspirator, Lydia Henslee, 29, of Denison,…
GE puts default password in radiology devices, leaving healthcare networks exposed
Dan Goodin reports: Dozens of radiology products from GE Healthcare contain a critical vulnerability that threatens the networks of hospitals and other health providers that use the devices, officials from the US government and a private security firm said on Tuesday. The devices—used for CT scans, MRIs, X-Rays, mammograms, ultrasounds, and positron emission tomography—use a…