Ugh. Fairchild Medical Center had a misconfigured server exposing PHI from December 16, 2015 until they were alerted to the problem in late July by an unnamed security company who discovered the exposure. Here’s their press release, below. Note that this does not (yet) appear on HHS’s breach tool. YREKA, Calif., Nov. 25, 2020 /PRNewswire/ — In…
Category: U.S.
PA: Part of Delaware County Computer System Down After Attacked By Hackers
Chad Pradelli and Cheryl Mettendorf report: Cybercriminals have attacked the Delaware County, Pennsylvania government network and taken it hostage. The criminals are demanding $500,000 to free it up. Sources told Action News, the cybercriminals gained control of the network on Saturday encrypting files, including police reports, payroll, purchasing, and other databases. Prosecution evidence, however, has…
Indiana justices agree to hear hospital records suit stemming from insider snooping case
Attempts to hold an entity liable for the wrongdoing of an employee has produced mixed results in the courts. Here’s a case in Indiana like that, below. As seen on The Indiana Lawyer: Justices last week granted transfer in the case of Community Health Network, Inc. v. Heather McKenzie, et al., 20S-CT-648. Heather McKenzie’s medical records…
Is Rand McNally just routinely “upgrading systems” or are they dealing with an attack?
A notice on their web site says that Rand McNally is upgrading their systems: Oh really? Why didn’t their site just admit what they wrote in email: “Dear Valued Customer, Rand McNally recently discovered a disruption to certain portions of our computer network. We commenced an immediate investigation that included taking certain systems offline and…
Ransomware attack hits Baltimore County Public Schools
Ethan McLeod reports: Baltimore County schools are out one day early during the holiday week after the system’s networks were struck by ransomware. The school system had initially characterized the disruption as “issues with our network” Wednesday morning, but said in a follow-up post on social media that it was attributable to a ransomware attack…
Bad Medicine: Hospital Hit With Multiple Data Breach Class Actions for Unauthorized Access of Patient Records
Kristin L. Bryan of Squire Patton Boggs writes: Healthcare data breaches are on the rise-recent estimates peg the number of patient records breached in 2019 as exceeding 41 million individuals. Additionally, approximately 60% of all healthcare data breaches are caused by internal actors—a statistic underscored by consecutive data breach class actions filed against the Mayo…