Healthcare - The Data Breach Times

January 22, 2024

1234 views 47 secs 0

COVID Test Data Breach: 1.3 Million Patient Records Exposed Online

Jeremy Fowler reports: Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to vpnMentor about a non-password protected database that contained nearly 1.3 million records, which included COVID-19 testing information and personally identifiable information such as the patient’s name, date of birth, and passport number. The publicly exposed database contained an estimated 1.3 million records that included 118,441 certificates, […]

Data Breach News, Commentaries and Analyses, Healthcare, Malware Ransomware

January 19, 2024

665 views 11 secs 0

‘Punishing the victims’: Would banning ransom payments stop hospital cyberattacks?

In its The State of Ransomware in the U.S. report for 2023, Emsisoft opined that the only solution to the ransomware crisis is to completely ban ransomware payments. That recommendation has generated some discussion, and now Becker’s has also reached out to health system CISOs to get their reaction to the recommendation. The majority’s opinion […]

Legal News, Healthcare, Malware Ransomware, News

January 06, 2024

1418 views 7 mins 0

Attorney General James Reaches Agreement with Hudson Valley Health Care Provider to Invest $1.2 Million to Protect Patient Data After 2021 Data Breach

From the NYS Attorney General’s Office:

Data Breach News, Healthcare, News

December 16, 2023

1247 views 2 mins 0

Cancer patients being extorted by ransomware gang

While many ransomware groups claim there’s nothing personal in what they are doing and that it’s “just business,” there are some lines even criminals should never cross. Interfering with patient care when lives might be on the line if care is delayed or disrupted is one such line. Attempting to harass, threaten, or extort seriously […]

Data Breach News, Healthcare

December 12, 2023

1344 views 6 secs 0

Kentucky healthcare giant says 2.5 million people affected by May ransomware attack

The Record reports: A ransomware attack in May exposed 2.5 million patients of hospitals connected to healthcare giant Norton Healthcare. In notices submitted to regulators in Maine and California last week, the company said it discovered the attack on May 9 and later confirmed that it was dealing with a ransomware incident. After an investigation, the company said the […]

Data Breach News, Healthcare

December 07, 2023

1292 views 6 secs 0

CarePointe ENT Settles HIPAA Lawsuit with Indiana Attorney General

The HIPAA Journal reports: In late September 2023, Indiana Attorney General Todd Rokita filed a lawsuit against CarePointe ENT over a ransomware attack and data breach that affected 48,742 individuals. A settlement has been reached that will see CarePointe pay $125,000 to resolve alleged violations of the Health Insurance Portability and Accountability (HIPAA) Act and […]

Data Breach News, Healthcare

December 07, 2023

2165 views 2 mins 0

Nine Prime Healthcare hospitals affected by MOVEit breach

CBIZ KA is a third-party vendor for Prime Healthcare that was affected by the MOVEit breach. They have issued the following notice: CBIZ KA, a third-party vendor for Prime Healthcare (Prime), discovered a security incident involving CBIZ’s use of MOVEit Transfer software, which has recently reported a security vulnerability. Prime takes the responsibility of safeguarding […]

Data Breach News, Healthcare

December 07, 2023

1223 views 19 secs 0

Millions of patient scans and health records spilling online thanks to decades-old protocol bug

TechCrunch reports: housands of exposed servers are spilling the medical records and personal health information of millions of patients due to security weaknesses in a decades-old industry standard designed for storing and sharing medical images, researchers have warned. This standard, known as Digital Imaging and Communications in Medicine, or DICOM for short, is the internationally recognized […]

Data Breach News, Healthcare

December 07, 2023

2613 views 2 mins 0

Fresenius discloses breach affecting more than 500,000 patients and employees

On December 6, Fresenius Medical Care AG filed Form 6-K with the Securities and Exchange Commission. The filing disclosed a data breach: On September 29, 2023, Cardiovascular Consultants, Ltd. (CVC), a subsidiary of Fresenius Medical Care AG (the Company) located in the United States (U.S.), became aware that some of its computer systems in the U.S. were […]

Data Breach News, Healthcare, News

December 02, 2023

1341 views 52 secs 0

Southwestern Ontario hospitals facing $480M class action after patient data breached, sold on dark web

CTV reports: A group of southwestern Ontario hospitals is facing a potential $480-million class action lawsuit after at least 270,000 patients in the region had their data breached and reportedly sold by hackers on the dark web. The breach, first detected on Oct. 23, targeted Bluewater Health, Chatham-Kent Health Alliance, Erie Shores HealthCare, Hôtel-Dieu Grace […]