The Hutchinson Community Foundation is making donors, vendors and other stakeholders aware of a data breach that might have compromised personal and financial information. […] The breach came to the Community Foundation staff’s attention Sept. 19, when ransomware was discovered on the foundation’s network server. Ransomware encrypts files until a “ransom” is paid. Fortunately, the…
Category: Malware
TN: Hutton Hotel notifying guests of breach that began in 2012
Hutton Hotel in Nashville is notifying guests of a that first began on September 23, 2012. In their notification, they write that after being alerted to a potential problem by their payment processor, their outside consultants determined that unknown individuals had been able to install a program on the payment processing system in September 2012. The program could have…
MS: Urgent Care Clinic of Oxford notifies patients of ransomware attack
Urgent Care Clinic of Oxford is notifying patients seen prior to August 2, 2016 of what sounds like a ransomware attack. In their notification letter, they say that sometime in early July, their server was hacked. The breach was discovered on August 2nd when staff noticed the computer system running more slowly than usual. From the sound of their…
California CPA firm hacked to file fraudulent returns
On August 15, 2016, Wheeler & Egger, CPAs, LLP discovered a data security incident involving their firm and some of their clients whose 2015 tax returns were on Extension. After thorough investigation, they have discovered that the perpetrator(s) hacked into their system, and between August 3rd and 9th 2016, fraudulently filed 45 client tax returns. Letters were mailed to…
UPDATE: 5,000 Marin Medical Practices Concepts patient records lost during recovery from ransomware attack
In August, I noted a ransomware attack on Marin Medical Practices Concepts (MMPC), a business associate providing billing and EMR services to many physicians. The ransomware prevented the physicians from accessing patient records for more than 10 days, and Marin decided to pay an undisclosed amount of ransom. In an August 4 statement, however, they…
NJ Spine Center saw no other option but to pay ransom
Oof. This notification from the New Jersey Spine Center, sent to patients on September 22, describes a real disaster where not only essential patient files and credit card information were locked up, but their most recent backup was too. No wonder they paid the ransom. On July 27, 2016, our computer systems were attacked by a malware…