NYS Attorney General has been the most active state attorney general in terms of going after entities that don’t secure data properly. The following is from her latest press release: NEW YORK – New York Attorney General Letitia James secured $450,000 from three companies that distribute eufy home security video cameras for failing to secure consumers’…
Category: U.S.
Frederick Health recently identified a ransomware attack
From Frederick Health’s website: January 28, 2025 – Frederick Health Medical Group offices are open. Please be aware that you may experience delays as we continue to operate under current circumstances. In the event that your appointment cannot proceed, the office team will work with you to reschedule as soon as possible. January 27, 2025 – Frederick…
UnitedHealth estimates 190M people impacted by Change Healthcare cyberattack
Paige Minemyer reports: Change Healthcare now estimates that 190 million people were impacted in the massive cyberattack that took down its services nearly a year ago. UnitedHealth Group, Change’s parent company, said in a statement to Fierce Healthcare that the “vast majority” of people impacted have received an individual or substitute notice about the breach….
US Justice Department drops case against Texas doctor charged with leaking transgender care data
Prosecutors may have dropped the case against Dr. Eithan Haim, but his conduct is a reminder of the insider threat. AP reports: Federal prosecutors on Friday dropped the case against a Texas doctor who called himself a whistleblower on transgender care for minors and was accused of illegally obtaining private information on patients who weren’t under his care. The…
HCF Management healthcare facilities hit by ransomware attack; more than 70,000 patients affected
HCF Management manages a variety of healthcare facilities in Ohio and Pennsylvania, including assisted living, rehabilitation services, long-term care, and hospice services. They are a for-profit organization. On October 29, 2024, RansomHub added HCF Inc. to its leak site with a claim that they had exfiltrated 250 GB of files. Their listing did not specifically…
Cybersecurity Incident Impacting Addison Northwest School District (ANWSD)
Legacy data and servers have bitten another entity. Kudos to Addison Northwest School District (ANWSD), though, for the clarity of their public notice, linked prominently from their home page. Their notice: We want to inform our community about a recent cybersecurity incident involving Addison Northwest School District (ANWSD). During an investigation into a breach affecting…