On May 5, 2021, Benson Health in North Carolina (formerly known as Benson Area Medical Center) discovered that it was the target of a cyberattack. According to their notification dated July 7, 2022, they immediately launched an investigation, engaged a law firm specializing in cybersecurity and data privacy, and engaged third-party forensic specialists to assist….
BJC HealthCare settles class action litigation
In May 2020, DataBreaches noted that BJC Healthcare in Missouri was alerting patients to a data breach. The breach had first been discovered on March 6, shortly after three employee email accounts were compromised. At the time of notification, BJC Healthcare reported that investigators were unable to determine if any emails or attachments had actually…
This post provides substitute breach notification to one patient Oregon Health & Science University could not otherwise directly notify
Federal regulations requjire substitute notice when notification by postal mail or other direct means cannot be made, but I cannot recall ever seeing a substitute notice that announced it was only being made for one particular patient. The following was published by the Oregon Health & Science University: On May 16, 2022, a computer belonging…
Timios settles data breach litigation
Real estate solutions company Timios agreed to settle claims it failed to protect consumer data in a July 2021 data breach. Top Class Actions reports that in October 2021, Timios began to inform customers their sensitive information may have been compromised when a third party gained access to the company’s network, encrypted certain Timios systems and…
Cn: Two hackers get arrested five days after their release for making $300,000 illegal profits
Global Times reports: Two hackers in Tongling, East China’s Anhui Province, were arrested by local police after they had been released from prison for only five days and made 2 million yuan($300,000) in illegal profits. The local police had lately discovered that the backend data of a company in its jurisdiction had been hacked, and…
South Korean call taxi system paralyzed by ransomware attack, company pays ransom to get decryptor
Ahn Ho-cheon reports (machine translation follows): A company operating a ‘call taxi system’ in most cities and counties in Gangwon-do was attacked by a hacking attack, and call taxi calls through smartphone apps were blocked. It was found that the call system was paralyzed in parts of Busan, Gyeonggi, Gyeongbuk, and Jeonnam in addition to Gangwon…