Add Aretis Health LLC to the list of entities affected by the MOVEit breach. Aretis performs billing functions for NorthStar Anesthesia, and made notification to patients and HHS on behalf of the following entities: AmSol Physicians of Elkin, NC, PLLC Anesthesia Company of Houston, PLLC Anesthesia Resources Management Solutions, Inc Coronado Anesthesia, PLLC Digestive Health…
ECHN cyberattack compromised Social Security numbers, financial info and patients’ medical records
Eric Bedner reports: The cyberattack against the Eastern Connecticut Health Network in August resulted in the theft of employee and patient names and Social Security numbers, as well as patients’ confidential health and financial information, according to an attorney representing Prospect Medical Holdings — ECHN’s parent company. In a letter to the Connecticut attorney general’s office on…
Fauquier County Public Schools listed by LockBit (1)
Well, this is a bit different. Did Fauquier County Public Schools in Virginia contribute to its own attack by noting employees could use free online SMS MFA websites for folks who don’t want to use a personal phone number for 2FA/MFA? It’s something to think about. h/t, Brett Callow Update of October 20: Fauquier County…
Indiana attorney general sues provider over violation of consumer protection, privacy laws
Abigail Ruhman reports: Indiana Attorney General Todd Rokita is suing a northwest Indiana medical office over a ransomware event that put personal and protected health information at risk. The lawsuit alleges the provider was aware of security concerns before the data breach. The lawsuit filed last week against CarePointe — an ear, nose, throat, sinus and…
Mount Graham Regional Medical Center announces “cybersecurity incident”
David Bell reports: In a press release issued Friday, Mt. Graham Regional Medical Center announced it is dealing with a “cybersecurity incident.” The release states the attack affected the hospital’s communication and information systems, and officials are working with law enforcement and other system experts to determine the extent of the hack, including if patient…
And yet more victims in the U.S. medical sector
Earlier today, DataBreaches provided a small update on U.S. medical entities recently attacked or leaked by AlphV (BlackCat). Other groups also continue to attack health care entities. Here are a few: Monti added Cascade Family Dental to their leak site on October 1 with a note: About 130 Gb was downloaded. At 12 October whole…