Carly Page reports: Advanced, an IT service provider for the U.K.’s National Health Service (NHS), has confirmed that attackers stole data from its systems during an August ransomware attack, but refuses to say if patient data was compromised. Advanced first confirmed the ransomware incident on August 4 following widespread disruption to NHS services across the U.K. The attack…
Category: Subcontractor
Retirement plan participants urge judge not to dismiss Horizon Actuarial Services data breach class action
Abraham Jewett reports that a group of Horizon Actuarial Services retirement plan participants are trying to save their proposed class action lawsuit from dismissal by a judge. The litigation stems from a ransomware incident in November 2021. The proposed class of more than 2 million Horizon retirement plan participants argue that the data breach was…
Eventus WholeHealth notifies patients of breach
Eventus WholeHealth, PLLC (“Eventus”) provides integrated primary care and mental health services to medically vulnerable adults. In a press release issued this week, they disclose a breach involving protected health information. “On June 1, 2022, we observed suspicious activity associated with a single Eventus email account, despite multifactor authentication on the account.” Comment: That statement…
Ro says it ‘inadvertently’ exposed employees’ personal information
Zack Whittaker and Natasha Mascarenhas report: Healthcare unicorn Ro is notifying employees of a data exposure involving their personal information after a security contractor “inadvertently” uploaded a spreadsheet of employee data to the internet. In a data breach notice obtained by TechCrunch from an affected employee who received the notice this week, Ro said it…
Some Tufts community members’ health insurance information compromised in vaccine clinic data breach
Emily Thompson reports: Tufts announced in a Thursday evening email to the community that its vaccine clinic provider, Pelmeds, has experienced a data breach involving images of patients’ insurance cards. The number of Tufts community members affected by the breach is still unknown. Tufts has ended its contract with the company and postponed all previously…
Data Breach at Canadian Border Agency Contractor Involved up to 1.38 Million Licence Plates
The Canadian Press reports: The federal privacy watchdog says a data breach at a contractor for Canada’s border agency involved as many as 1.38 million licence plate images and associated information. In a report detailing its investigation, the privacy commissioner’s office cites inconsistencies in the way the Canada Border Services Agency managed licence plate information…