Post Bulletin reports: Rochester Public Library was notified that one of its library service partners, MNLINK, experienced a data breach on Dec. 15, 2022. Through the random cyber attack, the names and email address of 1,709 Rochester library customers might have been accessed. Read more at Post Bulletin.
Category: Subcontractor
CMS Responding to Data Breach at Subcontractor
I cannot remember any other breach where CMS actually issued those affected new Medicare numbers and cards, but it happened in this one: A Centers for Medicare and Medicaid (CMS) subcontractor was the victim of a ransomware attack in October. The full press release follows: The Centers for Medicare & Medicaid Services (CMS) is responding…
Most of the 10 largest healthcare data breaches in 2022 are tied to vendors
Jessica Davis reports: Ninety percent of 10 largest healthcare data breaches reported this year were caused by third-party vendors, much like in 2021. The fallout for many of these cyberattacks resulted in impacts for multiple connected providers, with two of these vendor incidents affecting hundreds of providers. These incidents should serve as a warning to…
Receivables Performance Management reveals ransomware attack in May 2021
Receivables Performance Management (RPM), a business associate to a number of businesses, including those in the healthcare sector, has been notifying regulators and individuals bout an incident in 2021 that reportedly impacted more than half a million Texans and an as-yet untold total number of individuals. The Washington state entity revealed that on May 12,…
NZ: Ransomware attacks: Privacy Commissioner plans investigation as Justice, Health hit
Chris Keall reports: Privacy Commissioner Michael Webster is planning an investigation after Wellington-based IT provider Mercury IT was hit by a ransomware attack – potentially compromising sensitive data it hosts for multiple clients, including health insurer Accuro, BusinessNZ, the NZ National Nurses Association and the Ministry of Justice, with 15,000 Coroners Court files taken out. The…
In: Hackers Selling Personal Data Of 150,000 Patients From a Tamil Nadu Hospital in Supply-Chain Attack
Bharat Sharma reports: After a cyberattack on AIIMS knocked out its servers, a threat actor is selling medical records of patients of a Tamil Nadu-based multispecialty hospital. A report released by CloudSEK claims that patient data of Sree Saran Medical Centre is on sale by a threat actor. On November 22, 2022, CloudSEK discovered a post…