Guy Boulton reports: Confidential medical information or other personal data of 9,500 patients at the Medical College of Wisconsin was compromised by a targeted attack on the school’s email system in July, the Medical College said Friday. The compromised email accounts contained one or more of the following types of information: patients’ names, home addresses, dates…
Category: Phishing
UPMC Susquehanna notifies 1,200 patients of data breach
The Daily Item reports: UPMC Susquehanna has notified 1,200 patients treated at various UPMC Susquehanna locations that their personal information — including names, dates of birth, contact information and Social Security numbers — may have been inappropriately accessed. Read more on Daily Item. So far, it’s reading like a phishing incident.
Chase Brexton Health Care notifies more than 16,000 patients after phishing incident
Chase Brexton Health Care in Maryland recently notified 16,562 patients after four employees fell for a phishing attack. The phishing emails were sent on August 2 and 3, and by August 4, the attackers had re-routed employees’ paychecks. Of note, there was no evidence that the attackers were seeking – or ever accessed or viewed –…
Cybercriminals hijacked a government server to send sophisticated malware to U.S. companies
Chris Bing reports: A Eastern European hacking group hijacked U.S. state government servers to dispense malware through phishing emails that were designed to appear like they had come from the Securities and Exchange Commission, according to research by Cisco’s Talos team and an analysis by other cybersecurity experts familiar with the activity. The technical findings connect…
More than four months after phishing attack, AU Medical Center notifies patients and employees
I had this deja vu feeling reading a report by Tom Corwin: Nearly five months after it happened, AU Medical Center announced that some patients may have had their personal information compromised by an attack on faculty email accounts, the hospital announced today. The attack known as phishing, where users unknowingly open up legitimate-seeming but…
NC: Morehead Memorial Hospital: Data breach may have leaked patient and employee information
Jessica Seaman reports: Morehead Memorial Hospital on Friday said a data breach has potentially exposed patient and employee information. The hospital said personal data may have been obtained through a phishing attack that affected two employee email accounts. Morehead Memorial did not say how many people were affected by the data breach. Read more on…