Sometimes you think your PHI have escaped a ransomware attack…. but they may not have as this notification from Northwest Rheumatology reminds us. On April 10, 2017, Northwest Rheumatology (“NW Rheumatology”) experienced a ransomware incident which left a limited portion of its computer system encrypted and inaccessible. NW Rheumatology immediately contacted its computer security vendor…
Uncovering data theft quickly
Seen on PhysOrg: Computer experts have always struggled to find solutions for protecting businesses and authorities from network breaches. This is because there are too many vague indicators of potential attacks. With PA-SIEM, IT managers have a solution that effectively protects their systems while exposing data thieves and criminal hackers more quickly than conventional software….
NHS staff personal data leaked in latest data breach
Nick Ismail reports: The details of hundreds of junior doctors has been mistakenly published online by an NHS trust, according to the Health Service Journal. In wake of this news – an instance of another data protection failure – Phil Codd, managing director Ireland & UKI Regional Director at SQS Group, is calling for the NHS…
Couple who stole Parkland, Baylor patient names to bill Medicare get federal prison time
Almost six years after I first reported on this breach and almost three years after they pleaded guilty, a Texas couple has been sentenced to prison. Kevin Krause reports: A Dallas company enticed patients to use Medicare-funded home health care they didn’t need by giving them grocery gift cards and cash, federal prosecutors say. Dallas Home Health Care…
Hackers Target the Bottom Line: Business Operations and Earnings
Derek Borchardt and Craig A. Newman of Patterson Belknap write: Over the past several years, we have witnessed a fundamental shift in orchestrated cyber-attacks from hacking credit card data and healthcare information to targeting businesses, their operations and bottom lines. Last month, companies across the globe were hit by the so-called “Petya” ransomware attack, as…
CNIL Fines Rental Car Company for Data Security Failure Attributable to Third-Party Service Provider
Hunton & Williams explain: On July 27, 2017, the French Data Protection Authority (“CNIL”) imposed a fine of €40,000 on a French affiliate of the rental car company, The Hertz Corporation, for failure to ensure the security of website users’ personal data. On October 15, 2016, the CNIL was informed of the existence of a…