The Blackbaud ransomware incident disclosed on July 16 will likely end up being the largest or one of the largest breaches of the year involving patient information. I’ve been reading disclosures from dozens of entities and have compiled a list of those Blackbaud clients whose disclosures state or suggest that Blackbaud had been storing some…
Search Results for: blackbaud
CA: Enloe Medical Center also notifying patients after Blackbaud ransomware incident
Add Enloe Medical Center to those notifying donors and patients because of the ransomware incident that Blackbaud disclosed in July. You can read their notification here.
NorthShore health system reports 348,000 affected by Blackbaud breach
Ugh. I’ve been so busy adding Blackbaud incident-related reports to my worksheets that I maintain for my research with Protenus for Breach Barometer that I forgot to post some incidents here. Thankfully, a kind reader gave me a gentle poke to let you know that Lisa Schenker reported that NorthShore University HealthSystem is notifying approximately 348,000…
Blackbaud believes your data is safe from further misuse. Do you?
You may have seen a number of headlines from schools and non-profits disclosing that their students or donors’ information was impacted by a May, 2020 ransomware incident at UK software firm, Blackbaud. According to Blackbaud’s notice: Prior to our locking the cybercriminal out, the cybercriminal removed a copy of a subset of data from our…
Attorney General James Reaches Agreement with Refuah Health Center to Invest $1.2 Million to Protect Patient Data and Pay $450,000 in Penalties to State
January 5, 2024 NEW YORK – New York Attorney General Letitia James today announced an agreement with a Hudson Valley-area health care provider, Refuah Health Center, Inc. (Refuah), for failing to safeguard the personal and private health information of its patients. The Office of the Attorney General (OAG) found that Refuah failed to maintain appropriate controls to protect and limit access to sensitive data, including by failing to encrypt patient information and using multi-factor authentication. As…
Attorney General James Secures $300,000 from NewYork-Presbyterian Hospital for Failing to Protect Patient Data
December 27 NEW YORK – New York Attorney General Letitia James today secured $300,000 from The NewYork-Presbyterian Hospital (NYP) for disclosing the health information of individuals who visited their website. An investigation by the Office of the Attorney General (OAG) found that the hospital used advertising tools on its website that collected and shared private and personal…