Brian Krebs reports: Networking software giant Citrix Systems says malicious hackers were inside its networks for five months between 2018 and 2019, making off with personal and financial data on company employees, contractors, interns, job candidates and their dependents. The disclosure comes almost a year after Citrix acknowledged that digital intruders had broken in by probing its…
NY: Computer breach exposes Community Care Physicians patients’ info
Eric Anderson reports: A number of Community Care Physicians patients may have had their protected health information, date of birth, and insurance coverage exposed during a hack of computers at Albany-based accounting firm BST & Co. CPAs. Those affected were first notified by letter from BST on Tuesday. BST said the computer virus was active…
Thinking about cybersecurity is great, but are you prepared for your building burning down?
Let’s not forget the physical threats to protected health information. This news report about a fire in Hillsdale, New York destroying the Hillsdale Healthcare medical practice should give you pause. Is this scenario anywhere in your risk assessment? Heather Bellow reports on the damage to a strip mall from the fire, but I’m going to…
Swiss info security body warns of ransomware attacks against businesses
Maria Nikolova reports: Switzerland’s Reporting and Analysis Centre for Information Assurance (MELANI) today issued a warning regarding a high number of ransomware attacks against Swiss businesses over the past weeks. In recent weeks, MELANI / GovCERT has dealt with more than a dozen ransomware cases in which unknown perpetrators encrypted the systems of Swiss SMEs and…
Protenus releases its analysis of 2019 health data breaches
Protenus’s 2020 BreachBarometer is now available for free downloading. From their highlights: Our analysis is based on 572 health data breaches reported to the U.S. Department of Health and Human Services (HHS), the media, or some other source during 2019 (Figure 1). As in years past, we do not have numbers for every incident in…
FL: NCH Healthcare (finally) sends breach notification letters for June, 2019 breach
In August, 2019, this site reported on an incident at NCH Healthcare in Florida. At the time, it was not clear whether patient data was impacted in the phishing incident. The entity had become aware of suspicious activity on June 14, but by mid-August, there was no report on HHS’s public breach or detailed disclosure….