There’s a troubling follow-up to an alleged cyberattack reported in May. Katelyn Ogle of KFOR reports: The Oklahoma State Medical Board has filed a complaint against a local doctor who claims her clinic was the target of a cyber attack, leaving former patients unable to get their medical records. “It just makes me sick, what…
National Student Clearinghouse notifies schools of MOVEit breach
On June 24, DataBreaches reported that the National Student Clearinghouse was one of the victims of the MOVEit breach by Clop, In that report, DataBreaches stated that the clearinghouse’s statements to date had not indicated whether they had paid any ransom demand, but DataBreaches had learned that their name had been removed from Clop’s leak…
HHS Office for Civil Rights Settles HIPAA Investigation with iHealth Solutions Regarding Disclosure of Protected Health Information on an Unsecured Server for $75,000
HHS has announced another Security Rule enforcement action. This one involves iHealth Solutions (dba Advantum Health), a business associate. The incident involved an unsecured server where protected health information of patients was exfiltrated. The iHealth incident had been discovered by Kromtech Security and was first reported by DataBreaches on May 9, 2017. On May 10,…
LetMeSpy, a phone tracking app spying on thousands, says it was hacked
Zack Whittaker reports: A hacker has stolen the messages, call logs and locations intercepted by a widely used phone monitoring app called LetMeSpy, according to the company that makes the spyware. The phone monitoring app, which is used to spy on thousands of people using Android phones around the world, said in a notice on its…
Sweetwater Union High School District now admits February outage was a hack, but still hasn’t answered questions
There’s an update to a report in February about an outage that wasn’t described at the time as a hack or ransomware attack. Laura Acevedo reports: The Sweetwater Union High School District has confirmed a hack was the cause of a days-long system outage at their facilities, saying the personal information of employees, students, and families…
MOVEit breach also impacted major pension systems and insurers
Cathie Anderson of The Sacramento Bee reported that the nation’s two biggest pension systems were impacted by the MOVEit breach: The California Public Employees’ Retirement System reported Wednesday that hackers stole the names, social security numbers, birth dates and other confidential information of roughly 769,000 retirees and beneficiaries….. CalSTRS, the nation’s second-largest, said Thursday it, too,…