Naomi Diaz reports: The American Hospital Association sent a letter to the HHS urging them to clarify whether hospitals and health systems should be providing breach notification to patients if protected health information is compromised due to the Feb. 21 cyberattack on Change Healthcare. The March 21 letter, penned to Melanie Fontes Rainer, acting director of the…
Med-Data data leak $7M class action settlement
There is an update to a data leak incident discovered and reported by independent researcher Jelle Ursem and DataBreaches.net in April 2021. Top Class Actions reports that Med-Data, a business associate that handles health insurance claims data, has agreed to pay $7 million to resolve claims that one of its employees publicly posted patient information on…
Russian Intelligence Targets Victims Worldwide in Rapid-Fire Cyberattacks
Nate Nelson reports: Russian state hackers are performing targeted phishing campaigns in at least nine countries spread across four continents. Their emails tout official government business and, if successful, threaten not just sensitive organizational data, but also geopolitical intelligence of strategic importance. Such a sophisticated, multi-pronged plot could only be wrought by a group as…
Public notice of break-in at Whitehorse Victim Services office
The Government of Yukon is reporting a break-in that occurred at the Whitehorse Victim Services office sometime between the evening of March 15 and the morning of March 16, 2024. The Whitehorse detachment of RCMP “M” Division is investigating the break-in and the Department of Justice is following the appropriate procedures to respond to the…
Another plastic surgery group has fallen victim to a ransomware attack – Long Island Plastic Surgical Group/NYSPG (2)
On March 8, DataBreaches learned of another attack on a plastic surgery group. This time, it was the Long Island Plastic Surgical Group, a group that has 10 locations in New York and dozens of doctors. This is another ransomware story that may have a very unhappy ending for patients and employees. Hit by Two…
“Lifelock” pleads guilty to hacking and fraud charges
Earlier today, Robert A. Purbeck of Idaho, aka “Lifelock” and “Studmaster,” pleaded guilty in an Atlanta federal courtroom to two counts of an 11-count indictment filed against him in 2021. The two counts charged violation of Title 18, United States Code/ Sections 1030(a)(2)(C)/ 1030(c)(2)(B)(i) and 1030(c)(2)(B)(iii) and Section 2, more commonly known as the Computer…