Brandywine Counseling and Community Services, Inc. disclosed a breach. Note that this is not the Brandywine Urology breach recently disclosed but a different entity and a different breach. DataBreaches.net has reached out to Brandywine Counseling to ask for clarification on certain details, but has not received any response by publication time. This incident is not…
Search Results for: HCA
FBI says state hackers have broken into US coronavirus research: report
Fox News reports: Foreign government hackers have broken into companies conducting research into COVID-19 treatment and the U.S. healthcare sector, an FBI official reportedly said. Tonya Ugoretz, the FBI Deputy Assistant Director, told participants in an online panel discussion on Thursday that the bureau has seen state-backed hackers looking at a series of healthcare and research institutions. Read more…
A business associate’s response to a breach raises questions of timeliness
I know we’re in the middle of a pandemic, but an incident involving Avalon Health Care Management occurred before all that. And once again, I find myself scratching my head over the timeline in a notification and how Health & Human Services/Office for Civil Rights will view the timeline in terms of compliance with the…
WI: EVERSANA reports breach of protected health information that occurred in 2019
EVERSANA, a global commercial services provider to healthcare entities, has disclosed a data breach that occurred between between April 1 and July 3, 2019. The breach reportedly affected patient data stored in a legacy technology environment, which has since been updated. According to their notification, “Upon notification of unusual email activity, the firm immediately conducted…
An old HIPAA incident rears its very ugly head again
Like other journalists who cover data breaches in the healthcare space, I routinely check HHS’s public breach disclosure tool (sometimes called “The Wall of Shame”) to see what breaches have been reported to them and with what numbers. One of the recent entries was from a “Stephan C. Dean” who listed himself as a business…
University of Utah Health notifies patients of phishing attacks that began in January
The University of Utah Health is notifying patients whose protected health information was in some employees’ email accounts after they fell for a phishing attack. The following is a notice posted on their website March 20th: We are committed to protecting the confidentiality of our patients’ information. Regrettably, this notice is regarding an incident involving…