Endless Mountains Health Systems (EMHS) in Pennsylvania has been dealing with a cyberattack that has impacted its operations and some of its systems. They have not stated whether it is a ransomware incident or not. EMHS announced the attack on March 5 on its website, but had already been noting problems on its Facebook page…
Category: U.S.
Extensive US public school employee data compromise reported from Carruth Compliance Consulting breach
SC Media reports: Oregon-based third-party retirement plan administrator Carruth Compliance Consulting had information from more than 40,000 public school teachers and employees in California, Illinois, New York, Oregon, and Pennsylvania exfiltrated following a December attack by the newly emergent Skira Team hacking group, which purported the theft of data from 36 public schools across the…
Info accessed in Rainbow board data breach ‘deleted and has not been shared’
Sudbury.com reports: Data acquired by unauthorized individuals during Rainbow District School Board’s recent cyber incident “was deleted and has not been shared,” according to an update on the situation from the school board. The school board also said in the Feb. 28 statement that three weeks after the cyber incident, which meant internet was unavailable…
Imprisoned IRS Contractor Leaked Information of Over 400,000 Taxpayers
James Lynch reports: Imprisoned former IRS contractor Charles Littlejohn improperly leaked information of over 400,000 taxpayers, a far greater number than the agency previously disclosed. Acting IRS Commissioner Douglas O’Donnell wrote a letter to House Judiciary Committee Chairman Jim Jordan (R., Ohio) earlier this month notifying him that Littlejohn’s illegal disclosures impacted 405, 427 taxpayers,…
Medical Billing Vendor Sued Over Health Data Leak ‘Gold Mine’
Cassandre Coyer reports: Health-care billing company Medical Billing Specialists Inc. didn’t appropriately monitor its computer systems, failing to notice a data breach exposing swaths of its clients’ patient data, a proposed class action said. The provider didn’t follow its contractual requirements with medical providers, nor “industry standards, common law, and representations” it made about its…
Bluesight’s 2025 Breach Barometer Report Reveals Surge in Healthcare Data Breaches
ALEXANDRIA, Va., Feb. 26, 2025 /PRNewswire/ — Bluesight, the leading provider of inventory management, procurement, and compliance solutions for health systems and hospital pharmacies, today released its 2025 Breach Barometer report. The report, featuring analysis from DataBreaches.net and Clearwater, examines data breaches over the past year affecting U.S. patient and health data, highlighting the growing challenges healthcare…