Geena Arevalo reports that Hampton Roads Community Health Center has disclosed that in December, it discovered that its server with (unencrypted) patient data had been compromised. The center did not disclose the number affected nor how the attack occurred (of course, they may not know that yet), but a notice posted on the center’s web site…
Category: U.S.
42,000 SLCC students’ tax documents were lost when unencrypted drive fell out of mailed envelope
Someone asked me today about the lack of W-2 phishing reports or W-2 incidents that we’ve seen so far this year. I responded that I hadn’t really had time to research W-2 attacks yet, but a reader, “DLOW,” has now kindly submitted a news story by Mary Richards of KSL in Utah. The kinds of…
AZ Plastic Surgery Center refuses thedarkoverlord’s “handsome” proposition, notifies patients and HHS of hack
Yet another healthcare provider has revealed that they were hacked by thedarkoverlord (TDO). Dr. Robert Spies, a plastic surgeon in Scottsdale, Arizona, has notified HHS and his patients of the hackers’ attempt to extort the practice. Although he does not name the hackers responsible in a notice on his web site, Dr. Spies explains: On…
NE: CHI Health officials say virus introduced to health system’s network by third-party vendor’s infected device
So let’s be honest: how often do you monitor your third-party vendors or business associates to ensure that the devices they may connect to your network are free from malware? Julie Anderson reports: CHI Health has caught a virus, but it’s not the kind the health system is used to battling. Dr. Cliff Robertson, CHI…
Changing numeric ID in url allowed students to view other Stanford students’ admission files, sensitive personal data
Julia Ingram and Hannah Knowles report: Before this week, Stanford students could view the Common Applications and high school transcripts of other students if they first requested to view their own admission documents under the Family Educational Rights and Privacy Act (FERPA). Accessible documents contained sensitive personal information including, for some students, Social Security numbers….
IL: School District computer system; most data recovered, superintendent says
Kennedy Nolen reports: Foreign hackers targeted the Mount Zion schools computer system in an attack that resulted in 19 days’ worth of grades being wiped out across the district. Data was not removed from the system, but the hackers encrypted several servers, making them unusable, Superintendent Travis Roundcount said in an emailed response to questions from the…