Dan Goodin reports: Dozens of radiology products from GE Healthcare contain a critical vulnerability that threatens the networks of hospitals and other health providers that use the devices, officials from the US government and a private security firm said on Tuesday. The devices—used for CT scans, MRIs, X-Rays, mammograms, ultrasounds, and positron emission tomography—use a…
Category: HIPAA
Mercy Health discloses an insider breach, fires the employee
The following press release gives no indication as to how many patients were impacted, or what the employee’s motivation might have been. Was this just a curiosity/snooping situation, or was there some other motive? ST. LOUIS, Dec. 4, 2020 /PRNewswire/ — This news release is being issued to provide notice about a medical records privacy incident…
MD: Ransomware impacted Greater Baltimore Medical Center’s information technology systems
Theo Hayes reports: Computer systems were down Sunday at the Greater Baltimore Medical Center due to ransomware, 11 News has learned. GBMC released a statement, saying: “On the morning of Sunday, Dec. 6, 2020, GBMC HealthCare detected a ransomware incident that impacted information technology systems. Although many of our systems are down, GBMC HealthCare has…
Proposed settlement announced in Kalispell Regional Healthcare breach lawsuit
In October, 2019, Kalispell Regional Health suffered a phishing incident that impacted more than 100,000 patients. They were sued shortly thereafter. Today, a proposed settlement of the class action lawsuit was announced. The settlement has yet to be approved and the class hasn’t been certified yet for purposes of the suit. That is all scheduled…
Georgia dental practice discovers it was attacked by ransomware when the attackers call them on the phone
Well, this is a bit different from what I am used to reading. Galstan & Ward Family and Cosmetic Dentistry (Galstan & Ward) is a dental practice in Georgia. On September 9, 2020, they learned that they had been a victim of a ransomware attack — or an attempted attack — when they got a…
Thousands of US lab results and medical records spilled online after a security lapse
Zack Whittaker reports: NTreatment, a technology company that manages electronic health and patient records for doctors and psychiatrists, left thousands of sensitive health records exposed to the internet because one of its cloud servers wasn’t protected with a password. The cloud storage server was hosted on Microsoft Azure and contained 109,000 files, a large portion…