If you follow the news on how lucrative ransomware attacks are, you have probably read how the Ryuk threat actors have made an estimated $150 million, and how Egregor threat actors are also doing a lot of damage. Neither group focuses solely on the healthcare sector, but recent reports by Check Point and Fortified Health…
Search Results for: HCA
OCR Releases Report Summarizing HIPAA Privacy and Security Compliance Failures
Joseph J. Lazzarotti and Maya Atrakchi of JacksonLewis write: In the final days of 2020, the Office for Civil Rights (OCR) at the U.S. Health and Human Service (HHS) released a HIPAA Audits Industry Report (“the Report”), that could be quite helpful to covered entities and business associates for tackling HIPAA compliance as we enter the new…
“Without Undue Delay, Part 1:” Update on earlier ransomware cases
In November, DataBreaches.net published a commentary arguing that patients need to be notified sooner of ransomware dumps even if HIPAA would seem to allow up to 60 days. As a companion to that piece, this site looked at 30 claimed ransomware attacks on U.S. healthcare entities that had been revealed on dedicated leak sites by…
WV: Prestera Center notifies patients of data security incident
Prestera Center for Mental Health Services in West Virginia offers behavioral health care and addictions treatment programs, including outpatient treatment and residential substance abuse treatment. They issued a press release on December 31 and posted the following on their web site: December 31, 2020 Prestera Center Notifies Patients of Data Security Incident December 31, 2020…
Leon Medical Center confirms ransomware attack, credits employees and staff with providing quality care despite attack
One of the medical entities recently identified as a victim of a ransomware attack is Leon Medical Centers (LMC) in Florida. Founded in 1996, LMC expanded over the years into a comprehensive outpatient healthcare system that includes seven medical centers among other healthcare services. LMC offers a range of services to Medicare patients as well…
Vn: Leaky Server Exposes 12 Million Medical Records to Meow Attacker
Phil Muncaster reports: A healthcare technology company leaked 12 million records on patients including highly sensitive diagnoses, before the exposed cloud server was struck by the infamous “meow” attacker, researchers have revealed. A team at SafetyDetectives led by Anurag Sen discovered the leaky Elasticsearch server in late October after a routine IP address scan, although…