In December, INTEGRIS Health disclosed a cyberattack in November in which threat actors contacted patients directly to extort them when INTEGRIS wouldn’t pay their demands. DataBreaches subsequently reported additional details. On February 6, INTEGRIS updated its breach notice. The updated website notice incorporates the kind of language that advocates for transparency and data protection may…
Health NZ notifying around 12k people impacted by data breach
1News reports: Health New Zealand Te Whatu Ora has begun the process of notifying around 12,000 individuals who were impacted by the alleged unauthorised data release by a former staff member. Barry Young, 56, has denied accessing a computer system for dishonest purposes. Health NZ chief executive Margie Apa said the first group being contacted…
PA: Washington County pays $350,000 ransom after cyberattack
Chris Hoffman reports: The Washington County Board of Commissioners formally voted on Thursday on handling the recent cyberattack. Some have questioned the transparency of the process. The questions about transparency have been because of secret and emergency meetings. According to the solicitor, some of that was because of the deadlines set up by the cybercriminals….
Quest Diagnostics pays $5M after mixing patient medical data with hazardous waste
Jessica Lyons reports: Quest Diagnostics has agreed to pay almost $5 million to settle allegations it illegally dumped protected health information – and hazardous waste – at its facilities across California. This sum won’t hurt at all for the corporation, one of the largest clinical medical lab networks in the US. In all, Quest is…
U.S. Internet Leaked Years of Internal, Customer Emails
Brian Krebs reports: The Minnesota-based Internet provider U.S. Internet Corp. has a business unit called Securence, which specializes in providing filtered, secure email services to businesses, educational institutions and government agencies worldwide. But until it was notified last week, U.S. Internet was publishing more than a decade’s worth of its internal email — and that of thousands of…
Insurance provider for public servants abroad detects ‘cybersecurity incident’
Safiyah Marhnouj reports: The insurance provider for members of the Public Service Health Care Plan who are posted abroad or travelling says it recently detected a “cybersecurity incident” involving its systems, but hasn’t determined what information may have been accessed. MSH International Canada said it detected the incident on Feb. 9., and immediately paused services. Law enforcement was…