Prosecutors may have dropped the case against Dr. Eithan Haim, but his conduct is a reminder of the insider threat. AP reports: Federal prosecutors on Friday dropped the case against a Texas doctor who called himself a whistleblower on transgender care for minors and was accused of illegally obtaining private information on patients who weren’t under his care. The…
Category: U.S.
HCF Management healthcare facilities hit by ransomware attack; more than 70,000 patients affected
HCF Management manages a variety of healthcare facilities in Ohio and Pennsylvania, including assisted living, rehabilitation services, long-term care, and hospice services. They are a for-profit organization. On October 29, 2024, RansomHub added HCF Inc. to its leak site with a claim that they had exfiltrated 250 GB of files. Their listing did not specifically…
Cybersecurity Incident Impacting Addison Northwest School District (ANWSD)
Legacy data and servers have bitten another entity. Kudos to Addison Northwest School District (ANWSD), though, for the clarity of their public notice, linked prominently from their home page. Their notice: We want to inform our community about a recent cybersecurity incident involving Addison Northwest School District (ANWSD). During an investigation into a breach affecting…
DOJ confirms arrested US Army soldier is linked to AT&T and Verizon hacks
Zack Whittaker reports: U.S. prosecutors have formally linked the arrest of a serving U.S. Army soldier in December to a massive theft of U.S. phone records from AT&T and Verizon last year. Authorities arrested Cameron John Wagenius, a U.S. Army communications specialist, in Texas on December 20 following a brief two-page grand jury indictment accusing the U.S….
HHS Office for Civil Rights Settles HIPAA Ransomware Cybersecurity Investigation for $10,000
Settlement with Northeast Surgical Group marks OCR’s 10th ransomware enforcement action and 4th enforcement action in OCR’s Risk Analysis Initiative. Today the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR) announced a settlement with Northeast Surgical Group, P.C. (NESG), a provider of surgical services in Michigan, for a potential violation…
FTC Takes Action Against GoDaddy for Alleged Lax Data Security for Its Website Hosting Services
Proposed order will prohibit GoDaddy from misleading customers about its security protections and require it to establish a robust information security program January 15, 2025 The Federal Trade Commission will require web hosting company GoDaddy to implement a robust information security program to settle charges that the company failed to secure its website-hosting services against…