Samaritan Daytop Village, Inc. (“SDV”) has disclosed a breach that they first discovered on September 22. The not-for-profit, which started 60 years ago as an outpatient drug treatment services provider but expanded its scope, reports that they could not be sure whether data was actually viewed, exfiltrated, neither, or both. It is all still under…
Category: U.S.
Another law firm gets hit….. and yes, medical info was in its files
Today’s reminder that law firms have a wealth of personal, sensitive, and medically related info that is often not covered by HIPAA. Coughlin & Cerhart (C&G) law firm in New York experienced a security breach in early April. It is not clear from their press release whether this was a ransomware attack or not, and…
Judge rules in favor of University of Mississippi Medical Center in trial against former employees who stole patient records
Will Stribling reports: A federal judge has ruled in favor of the University of Mississippi Medical Center (UMMC) over litigation against three former employees who stole patient medical records for their own use and then lied about possessing them for years. U.S. District Judge Carlton Reeves on Oct. 8 issued a default judgment in the…
Breach at Throckmorton County Memorial Hospital affects patients and employees’ personal and protected health information
Sara Tomarelli reports: Throckmorton County Memorial Hospital has notified patients and employees of a security breach that potentially affected their personal information. According to a press release from Throckmorton County Memorial Hospital the breach was discovered in their system on September 7, 2021, when the hospital experienced a security incident involving unauthorized access and malware….
WI: Janesville schools hit with ransomware attack locking digital systems
Jaymes Langrehr reports: The School District of Janesville says it was hit with a ransomware attack over the weekend, locking students, staff and parents out of several web-based systems and programs. In a Facebook post Monday, the district said their IT team noticed irregularities in the district’s network, and an investigation found code in the…
National Rifle Association hacked by Grief?
This one could be interesting, if verified and depending on what data the threat actors may have acquired. Grief has added the NRA to their dedicated leak site. So far, they have dumped two screencaps and a file with grants information as proof of claim. One of the screencaps included some financial data. Depending on…