Update of October 5, 2021: On September 22, Alaska DHSS reported this incident to HHS as a health plan, and indicated that they were notifying 500,000 individuals (even though there was no evidence of data exfiltration). As of today, some of the state’s divisions are still not fully restored on the web. The Alaska Department…
Category: Non-U.S.
Hackers stole Covid test data of 1.4 million people from Paris hospital system
Sarah Elzas reports: Hackers stole the personal data of around 1.4 million people who took Covid-19 tests in the Paris region in the middle of 2020. The hack of a service of the Paris public hospital system, AP-HP, is the latest in a growing number of cyberattacks on French health institutions and Covid data breaches….
Office of the Privacy Commissioner for Bermuda Issues Data Breach Guide
Odia Kagan of Fox Rothschild writes: The Office of the Privacy Commissioner for Bermuda has issued a helpful guide on the various types of harm that could be caused by a data breach. The office also referred to the Future of Privacy Forum research on potential harms. Read more here, In their guidance, the Bermuda privacy…
Ottawa Hospital apologizes to unvaccinated staff for privacy breach
CBC reports: The Ottawa Hospital has apologized to unvaccinated staff after an email was sent out offering a vaccine education session with each recipient’s name visible to others. The email was sent from one of the hospital’s software systems and recalled immediately, the hospital said in a statement emailed to CBC, adding all copies of the email…
UAE: Moorfields Eye Hospital in Dubai sees more staff and patient data dumped
In August, threat actors calling themselves AvosLocker announced that they had attacked Moorfields NHS UK & Dubai. DataBreaches.net’s investigation at that point indicated that the data they provided as proof came from the Dubai hospital and did not involve any UK personnel or patients. In a statement to this site, Moorfields confirmed that there had…
Fujitsu confirms stolen data not connected to cyberattack on its systems
Jonathan Greig reports: Fujitsu has confirmed that data being marketed by cybercriminals is not related to any cyberattack on its systems. Criminal marketplace Marketo claimed to have 4GB of data from Fujitsu last month and began marketing it widely. […] Marketo has also changed its tune, now writing that the stolen data is entirely from Japanese manufacturing…