On October 4, Rainbow Children’s Clinic in Texas notified HHS of an incident affecting 33, 368 patients. Here is their notice from their web site, describing a ransomware incident: On August 3, 2016, Rainbow Children’s Clinic was the victim of a hacker who accessed its computer system and then launched a ransom ware attack that…
Category: U.S.
CalOptima discloses second HIPAA breach in as many months
For the second time in as many months, CalOptima is reporting a breach (see last month’s disclosure, here). According to a statement uploaded to the California Attorney General’s web site: On or about August 17, 2016, a departing CalOptima employee downloaded data, which included protected health information, to an unencrypted USB flash drive. Shortly after,…
NV: About 1,000 Members Victimized In Skimming Breach
CU Today reports that approximately 1,000 members of One Nevada CU have been victimized by an ATM skimmer. Barnes would not disclose which office’s ATM the skimming device was attached to, but news reports stated the device was found at its office located near Blue Diamond Road and Decatur Boulevard. Barnes said the device has been removed….
Russian Hackers Faked Gmail Password Form To Invade DNC Email System
Sheera Frenkel reports: Russian hackers used emails disguised to look as Gmail security updates to hack into the computers of the Democratic National Convention (DNC) and members of Hillary Clinton’s top campaign staff, according to a report by the SecureWorks cybersecurity company. The emails, which were sent to DNC and Clinton staff from March 10, appeared almost…
Curtis F. Robinson, M.D. notifies patients after ransomware attack on EMR provider
From the press release, this appears to be the same ransomware incident that Marin Medical Practices Concepts previously reported. Both MMPC Prima Medical Foundation subsequently reported that 5,000 patients were being notified that patient records were lost during the backup recovery process. Dr. Robinson’s practice appears to have been similarly affected. On August 22, 2016, Dr….
Subcontractor error exposed Vermont Health Connect customers’ SSNs
AP reports: A security lapse earlier this summer has jeopardized the Social Security information of nearly 700 users of Vermont’s online health insurance marketplace. Vermont Public Radio reports officials learned of the security breach when one Vermont Health Connect customer found her name and Social Security number on an online document while conducting an internet search….