Update: NorthJersey.com reports that the “Medical Management LLC” involved in this breach is based in North Carolina. One rogue employee at Medical Management LLC is resulting in 40 of the billing company’s clients having to notify patients. Medical Management is handling the notifications (template), but even so, this is not the way hospitals want to be in…
Category: Subcontractor
“MySchoolFees” site compromised; student data reportedly not compromised
This appears to be a defacement, but until the forensics are complete, we won’t know if any information has been accessed or acquired. Becky Wright reports: The website of a company used by Weber School District, “MySchoolFees,” has been compromised. Parents and students are being asked to stop making online payments through the site until…
Host of NSA’s smtp server hacked?
An interesting paste today by PH1K3 lets us follow along during an attempt to hack the host/dns provider for smtp.nsa.gov.
OH: MetroHealth reports data breach for 981 heart patients due to malware
Brie Zeltner reports: The MetroHealth System is notifying almost 1,000 patients who received heart catheterization procedures at the hospital over the past year that their protected health information may have been accessed when three computers were hacked there. The health system discovered “malware” or malicious software, on three computers in its Cardiac Cath Lab, according…
University of Pittsburgh Medical Center patients victimized by rogue employee of Medical Management LLC
UPMC is only one of “numerous” clients of NC-based Medical Management LLC that have reportedly been notified of data theft by a rogue employee. We’ll have to wait to learn who the other entities are. The following is a press release issued today by UPMC: Because of a data theft at an outside medical billing company,…
How the Washington Post was hijacked by the Syrian Electronic Army (again)
Graham Cluley reports: The Syrian Electronic Army appears to have successfully scalped another high profile media outlet, briefly hijacking the mobile version of the Washington Post website to display pop-up messages claiming that the media is not telling the truth. […] In this latest incident, as Motherboard reports, the hackers claim that they broke into systems belonging to Instart…