On September 24, Cook County Health and Hospitals System (CCH) in Illinois notified HHS of a breach. At the time, CCH reported that 500 patients were affected. The “500” entry is usually just a marker to indicate that the entity knows that they were required to notify HHS and individuals no later than 60 days…
Category: Subcontractor
Blackbaud settles breach probe by states for nearly $50M
Steven Ardary reports: A South Carolina software company has agreed to a multi-million dollar settlement for a 2020 ransomware event that exposed the personal information of millions of consumers in the United States. South Carolina Attorney General Alan Wilson announced that Blackbaud would pay $49.5 million to states settling allegations that the company violated state…
MOVEit Data Breach Lawsuits Sent to Massachusetts Federal Court
Christopher Brown reports: More than 100 lawsuits arising from a cyberattack on Progress Software Corp.‘s MOVEit file transfer application will be consolidated in federal court in Massachusetts, the Judicial Panel on Multidistrict Litigation said. Centralization of the lawsuits in the US District Court for the District of Massachusetts will serve the convenience of the parties and…
Aretis Health LLC notifies patients of 50 entities about MOVEit breach
Add Aretis Health LLC to the list of entities affected by the MOVEit breach. Aretis performs billing functions for NorthStar Anesthesia, and made notification to patients and HHS on behalf of the following entities: AmSol Physicians of Elkin, NC, PLLC Anesthesia Company of Houston, PLLC Anesthesia Resources Management Solutions, Inc Coronado Anesthesia, PLLC Digestive Health…
HC3: Sector Alert Progress Software WS_FTP Critical Vulnerabilities
Progress Software WS_FTP Critical Vulnerabilities Executive Summary Progress Software, the maker of the MOVEit file transfer software which was widely exploited by the CL0P ransomware-as-a-service (Raas) group, has released a new advisory regarding multiple vulnerabilities in the WS_FTP Server, a file transfer product. Two of the vulnerabilities were rated as critical and are being tracked…
IRS consultant charged in leak of tax returns for Trump, wealthy Americans
Devlin Barrett and Spencer S. Hsu report: A Washington-based consultant for the Internal Revenue Service was charged Friday with stealing the tax returns of former president Donald Trump and thousands of wealthy Americans in 2019 and 2020 and providing them to two news organizations that reported how little the super-rich pay in federal income taxes,…