Zack Whittaker reports: For years, online alcohol recovery startups Monument and Tempest were sharing with advertisers the personal information and health data of their patients without their consent. Monument, which acquired Tempest in 2022, confirmed the extensive years-long leak of patients’ information in a data breach notification filed with California’s attorney general last week, blaming their use…
Search Results for: patient
Employee and patient files from Montgomery General Hospital leaked by ransomware group
An email DataBreaches received yesterday from an unrecognized account contained just one line – a link to a new listing on the D#nut Leaks ransomware group’s leak site about Montgomery General Hospital (MGH) in West Virginia. MGH is part of the Montgomery General Health Care System, Inc., which includes the hospital, Montgomery General Elderly Care, Montgomery…
Nine months after ransomware attack, Atlantic Dialysis Management Services notifies patients and regulators
In August 2022, DataBreaches reported a ransomware attack on Atlantic Dialysis Management Services (ADMS) by Snatch Team. DataBreaches first learned of the breach in June 2022, when Snatch Team named ADMS on their leak site. Between then and August 16, when DataBreaches reported on the incident, ADMS ignored requests from this site for information about…
French CNIL is setting the tone for 2023: patients data and medical research on its radar
Julie Schwartz and Patrice Navarro of HoganLovells write: CNIL has always been very attentive to the processing of health data and to their security and confidentiality. It regularly publishes content on its website (practical information sheets, guidelines and binding recommendations), and has also made health data security one of its priority topics for its investigations…
Kroger notifies more than 82,000 Postal Prescription Service patients of mistaken information sharing
On March 10, Kroger’s Healthy Options program, Postal Prescription Services (PPS), issued a statement about a privacy breach. According to their statement, some PPS patients’ names and email addresses were erroneously shared with the grocery side of Kroger’s business due to an internal error. Kroger doesn’t state when the breach first occurred, but they discovered…
Private records of some Canberra Health Services patients ‘deliberately’ sent to industrial partner
Niki Burnside reports: Some Canberra Health Services (CHS) patients’ records have been emailed to people outside of the organisation, in what has been described as a “serious breach of privacy”. In an all-staff email, CHS chief executive Dave Peffer said the records had been sent by a small number of staff to multiple people within…