Tom Spring reports: A massive Locky ransomware campaign spotted this month targets primarily the healthcare sector and is delivered in phishing campaigns. The payload, researchers at FireEye said, is dropped via .DOCM attachments, which are macro-enabled Office 2007 Word documents. Especially hard hit are hospitals in the United States followed by Japan, Korea and Thailand, according to research…
Category: U.S.
Plaintiffs Cannot Bring Data Breach Lawsuits Without Evidence That Information Will Be Used To Harm
Every time there’s a big breach that has consumers or patients outraged, I see rumblings in the Comments section of posts about class-action lawsuits. An article by John Devine, Edward McAndrew, and Gregory Szewczy of Ballard Spahr about a recent opinion in District Court for the D.C. Circuit is a timely reminder of the uphill battle plaintiffs may…
NV: Fraudulent Unemployment Claims Targeted State Employees
Bob Conrad reports: The personal information, including social security numbers, of state employees was used to apply for state unemployment claims. That’s according to the Nevada Department of Transportation which notified its employees yesterday of the situation. “We want to make you aware that your Personal Identifiable Information (PII), including your name, date of birth,…
Rotech Healthcare notifies patients whose details were found in possession of unauthorized individual
Rotech Healthcare Inc., a provider of home respiratory and medical equipment equipment and supplies, notified HHS of a breach involving 957 patients. Here is their notification: Rotech Healthcare Inc. (“Rotech”) would like to notify you of a recent incident that may affect the security of your personal and protected health information. We are providing you…
Athens Orthopedic Clinic patient data still exposed on leak site
DataBreaches.net discovered today that two copies of a paste (data dump) with over 860 AOC patients’ information is still available online if you know where to look for it. I’m providing a redacted screenshot below so patients can get a sense of what these pastes/leaks look like, although I’ve blacked out most of the street addresses, the…
LA: Center for Neurosurgical and Spinal Disorders discloses hack
KPLC-TV reports that Center for Neurosurgical and Spinal Disorders announced a breach that occurred in July. From the center’s news release: Lake Charles, LA – On the morning of July 21, 2016, we detected an unauthorized intruder in one of our computers. Access to this computer was immediately shut down; subsequently, CNSD’s servers and network were taken…