Although some threat groups or affiliates have sworn off attacking the medical sector with ransomware, not all have. On Sunday evening, June 2, Special Health Resources (“SHR”) posted a notice on their Facebook account: We are currently experiencing technical difficulties and on Monday, our health centers will only see patients who are actively sick. All…
Category: U.S.
Federal criminal investigation involving Perry Johnson & Associates data breach
The Perry Johnson & Associates (PJ&A) data breach was the biggest reported breach involving protected health information in 2023, with more than 13 million patients affected1. Now WBEZ in Chicago reports that there is a federal criminal investigation related to the breach at the medical transcription service. Federal authorities are conducting a criminal investigation into…
70,000 Adventist Health Tulare patients being notified of HIPAA breach by payment collections associate
Adventist Health Tulare has issued a press release about a breach at a business associate in Nebraska. The June 7 press release states, “A data security incident was recently discovered by Signature Performance, an agency working on behalf of Adventist Health Tulare to collect payment for services.” Their investigation determined that an unknown party accessed…
What Snowflake isn’t saying about its customer data breaches
Zack Whittaker reports: Snowflake’s security problems following a recent spate of customer data thefts are, for want of a better word, snowballing. After Ticketmaster was the first company to link its recent data breach to the cloud data company Snowflake, loan comparison site LendingTree has now confirmed its QuoteWizard subsidiary had data stolen from Snowflake. “We…
PruittHealth was hacked back in November. Here’s what we STILL don’t know.
What happens when threat actors leak data on the dark web but the victim entity doesn’t access it in time to figure out what was leaked? That’s what happened to PruittHealth in Georgia last year. How many people are they notifying because they can’t figure out what was accessed, acquired, or leaked? In November 2023,…
Numotion data breach affected 602,265 patients
In March 2023, United Seating and Mobility, LLC, d/b/a Numotion (“Numotion”) paid the government $7 million to resolve allegations that it made false claims in submitting reimbursement requests to Kentucky Medicaid, two of Kentucky Medicaid’s Managed Care Organization contractors (MCOs), MO HealthNet (Missouri Medicaid), and D.C. Medicaid (archived). Numotion is a nationwide provider of durable…