This is the second part of a look-back at 2016 and a commentary on why we need to analyze breaches differently if we really want to become more proactive in preventing them. Part 1 of this article can be found here). To recap Part 1: although headlines tend to scream “HACK!” (and irritatingly show us stock images of…
Search Results for: HCA
2016: Healthcare data breaches in review, Part 1
There were a number of year-in-review analyses for the healthcare sector, but now Protenus has released its report, which is based on analyses of 450 U.S. incidents first disclosed in 2016. The incidents were compiled by DataBreaches.net, who also provided some of the analyses. While some media outlets still headline external hacks where massive numbers of records…
Emory Healthcare patient data hijacked and held for ransom? (UPDATED)
Yesterday, I noted a somewhat alarming report that misconfigured MongoDB installations are being wiped by a hacker who steals the databases and then holds them for ransom of .2 BTC (approximately $200 at yesterday’s rate or $220 at today’s rate). This latest threat was reported yesterday by Catalin Cimpanu of Bleeping Computer after an ethical hacker, Victor Gevers, disclosed the discovery he had made as part of Project 366. On…
Florida man sentenced to prison for selling medical records stolen from Rotech Healthcare
There’s an update to an incident previously reported on this site in August: Dec. 13 – U.S. District Judge Charlene Edwards Honeywell today sentenced Vickie Lorenzo Bryant (39, Plant City) to four years in federal prison for access device fraud and aggravated identity theft. He pleaded guilty on August 23, 2016. According to court documents, in…
Three Warner Chilcott District Managers Sentenced for Healthcare Fraud
The following is a press release from the DOJ. But what it doesn’t explain is how the pharmaceutical employees accessed patient information. If they did so (write prior authorization) without the doctors’ knowledge and/or consent, how did they get access to the patient files? And how were they able to put brochures in patients’ files? Three former…
Abundance of stolen healthcare records on dark web is causing a price collapse
Chris Bing reports: The large amount of leaked patient records stolen and posted for sale to the dark web in recent months has caused prices for most of those records to drop, according to new research provided to CyberScoop and conducted by the Institute for Critical Infrastructure Technology and cybersecurity firms Flashpoint and Intel Security….