DataBreaches.net has found a second HIPAA-covered entity that has revealed that it was affected by the Accellion attack by CLOP threat actors. On February 25, Trillium Community Health Plan in Oregon disclosed that they had been notified by Accellion on January 25 of the cyberattack that impacted dozens of Accellion’s clients. In Trillium’s case, the…
Category: Subcontractor
JP: Consulting firm hit with ransomware; 350 households have info possibly leaked
Hokkaido Cultural Broadcasting reports that an unnamed consulting firm in Tokyo contracted by Asahikawa City as part of rebuilding a housing complex was compromised by ransomware, resulting in the compromise of personal information for about 350 households. Read about it on fnn.jp (Japanese). h/t, @Chum1ng0
Ca: Personal data of 50,000 N.S. health-care workers may have been compromised by Accellion breach
Reports concerning an incident involving Nova Scotia Health Employees’ Pension Plan (NSHEPP) in Canada are part of the Accellion breach that has been in the news since January. NSHEPP has posted a number of notices and updates on their site. It is not yet confirmed whether their data was actually exfiltrated by the attackers or…
Massive Supply-Chain Cyberattack Breaches Several Airlines
The SITA breach that also impacted 580,000 Singapore Airlines customers is getting more attention as more and more airlines issue statements to their customers. Now my friends are even sending me emails they receive from airlines. You can read SITA’s disclosure on their site.
SC: Sandhills Medical Foundation notifies patients of vendor breach
Updated 3/6/2021: Sandhills reported this incident to Maine as impacting 39,602 patients, total. Original Post: Sandhills Medical Foundation has posted a notice of a data security incident on their web site, reproduced below. Based on the dates and description, it appears that this is the Netgain Technology LLC data breach that has previously been noted…
Southern Illinois University School of Medicine impacted by Accellion breach, notifies patients
It appears that SIU was impacted by the Accellion breach that has been in the news a lot this past month. SIU is the first entity, however, to disclose that the incident impacted protected health information (PHI), although as DataBreaches.net reported, this site found what might be PHI in Jones Day’s dumped data. SIU does…