The gap from the disclosure of a data breach to the filing of a potential class-action lawsuit is often a matter of weeks (or less), although a lot of lawsuits are dismissed for lack of Article III standing (see a 2021 review of data breach litigation here). In March, in-home respiratory care provider SuperCare…
About 1,700 MetroHealth patients affected by data breach
Jordan Unger reports: The MetroHealth System confirmed Wednesday that about 1,700 patients were affected by an accidental data breach. According to MetroHealth, the issue occurred during an upgrade to their electronic medical record system on Nov. 13. When MetroHealth sent out records to some of their patients, the name, date of service and provider name of…
Patients increasingly suing hospitals over data breaches
Jeff Lagasse reports: Industries are increasingly being sued by consumers for data breaches, but the sector with the biggest litigation increase is healthcare, according to new findings from the law firm BakerHostetler. In fact, healthcare comprises 23% of lawsuits due to data breaches. The next highest after that is business and professional services at 17%,…
On-the-Spot Intervention 95% Effective in Reducing Healthcare Employees’ Unauthorized Access to Protected Health Information (PHI)
The following is a press release from Protenus. As a reminder/disclosure: DataBreaches.net compiles data and performs some data analytic services for Protenus’s Breach Barometer each year. Protenus is pleased to announce a recent study found that on-the-spot interventions for healthcare employees who inappropriately accessed PHI were 95% effective in preventing repeat offenses. The article, “Effectiveness of…
‘JekyllBot:5’ Vulnerabilities Allow Remote Hacking of Hospital Robots
Eduard Kovacs reports: Cybersecurity researchers specializing in healthcare IoT systems have discovered five serious vulnerabilities that can be exploited to remotely hack Aethon’s TUG autonomous mobile robots. The TUG robots are used by hundreds of hospitals in North America, Europe and Asia to transport goods, materials and clinical supplies. Their role is to give staff…
CitySprint confirms security breach involing iFleet System, warns delivery drivers their personal data may be in the hands of hackers
Graham Cluley writes: Same-day delivery firm CitySprint has warned couriers it has suffered a data breach that may have allowed hackers to access their sensitive personal data. An email sent on April 7th to thousands of drivers confirming that a security breach had occurred. Read more at GrahamCluley.com. There is no indication in his report…