On January 30, Brooks Rehabilitation (“Brooks”) in Florida disclosed that in December, they discovered tracking technology vendors that provide services to Brooks were able to view/access individually identifiable health information (IIHI) provided when a website user provided contact information or feedback via a Brooks website. The data transmitted could have included information such as name;…
Category: U.S.
Community Health Systems estimates 1 million patients impacted by vendor’s GoAnywhere breach
Sometimes our first report of a data breach comes in an 8-K filing to the Securities and Exchange Commission. Such is the case with a breach affecting Community Health Systems, Inc. in Tennessee. In its 8-k filing of February 13, CHS discloses that they were recently notified by Fortra, LLC, a third party vendor of…
Pepsi Bottling Ventures suffers data breach after malware attack
Bill Toulas reports: Pepsi Bottling Ventures LLC suffered a data breach caused by a network intrusion that resulted in the installation of information-stealing malware and the extraction of data from its IT systems. […] “Based on our preliminary investigation, an unknown party accessed [our internal IT systems] on or around December 23, 2022, installed malware,…
Kimmel Center, Philadelphia Orchestra websites hit by cyber attack
Peter Dobrin reports: A cyber attack Friday crippled ticket sales and ticketing functions at the city’s largest arts presenter. Websites for the Kimmel Center and Philadelphia Orchestra were down, and patrons were left with scant information about the exact nature of the disruption. Read more at The Philadelphia Inquirer.
And two more class action settlements….
Electromed In August 2021, DataBreaches noted reports that Electromed had been hacked, and the incident affected employees and customers. Electromed later reported the incident to HHS as impacting 47,200 patients. According to subsequent disclosures, this was a ransomware incident that Electromed had discovered in June. In September 2021, a potential class action lawsuit was filed…
Cybersecurity Incident Shuts Down Biglaw Network
Joe Patrice reports: On the plus side, the cybersecurity incident at Troutman Pepper does not appear to have compromised any client data. So, in a sense, the system worked. But as a damage recovery matter, leaving attorneys using personal email accounts and locally saved documents for over a day highlights that for all the talk…