Mendelson Kornblum Orthopedic and Spine Specialists in Michigan recently notified 28,658 patients of a data security incident. The incident was reported to HHS on March 5 as a Hacking/IT incident. The practice writes, in part: On January 5, 2021, the Practice became aware that certain limited health information residing on one of its servers was…
Category: U.S.
MN: Minneapolis Police Officer’s Data Misuse Claims Head to Retrial
There’s an update to litigation stemming from misuse of a Minnesota state database. The case began in 2013, when Amy Krekelberg received a notice from Minnesota’s Department of Natural Resources that informed her that an employee had abused his access to a government driver’s license database and snooped on thousands of people in the state,…
WA: Douglas County targeted as part of international cyber attack
Tony Buhr reports: Douglas County was one of thousands of servers targeted in a cyberattack by a group out of China. It was an international attack that occurred March 2 and exploited a weakness in Microsoft servers, said Brad Hudson, Douglas County management information systems manager. The attack required Hudson to spend Friday through Sunday…
Ripoff Report and Armor Games Hacker Sentenced to Prison
There’s an update to the case of a young Cypriot hacker who pleaded guilty in January to hacking Armor Games and Ripoff Report. A Nicosia court had ruled in 2019 that Joshua Epiphaniou was to be extradited here. He is the first Cypriot national ever extradited from Cyprus to the United States. Today, the U.S. Attorney’s…
NY: Tri County Sheriff Dispatch hit with ransomware attack
News10 reports: The Albany County Sheriff’s Office says on Tuesday around 9:30 p.m. the Tri County Public Safety network which includes Albany, Saratoga, and Rensselaer Counties, was hit with a ransomware attack. Their office reportedly worked throughout the night with their vendors, as well as NYDHSES Office of Counter Terrorism Cyber Incident Response Team to…
Arizona Complete Health notifies plan members of Accellion breach
On February 26, Arizona Complete Health notified plan members of the Accellion breach. According to the notification (see below), the threat actors (who have since self-identified as CLOP) were able to “view or save” member information between January 7 and January 25, 2021. The types of ePHI involved included insured members’ name and one or…