Ransomware Attack Affects: 8,750 Patients According to Aging Agency
Nov09

Ransomware Attack Affects: 8,750 Patients According to Aging Agency

East Central Kansas Area Agency on Aging (ECKAAA), an Ottawa-based body, has reported that a ransomware attack, resulting in the encryption of files on one of the agency’s servers, has exposed files containing the protected health information (PHI) of approximately 8,750 patients. The cyberattack happened on September 5, 2017 and was immediately located by ECKAAA, which took swift moves to limit the spread of the infection. Dues to...

Read More
NY AG Brings in Stop Hacks and Improve Electronic Data Security Act (SHIELD Act)
Nov08

NY AG Brings in Stop Hacks and Improve Electronic Data Security Act (SHIELD Act)

Aiming to protect New Yorkers from unwelcome breaches of their personal information, The Stop Hacks and Improve Electronic Data Security Act (SHIELD Act) has been introduced into the legislature in New York by Attorney General Eric T. Schneiderman. It is hoped that this Act with ensure that those affected will be notified when such breaches are incurred. Sponsored by Senator David Carlucci (D-Clarkstown) and Assembly member Brian...

Read More
Breach of PHI at Texas Children’s Health Plan After Staff Member Sent Emails to Personal Account
Nov07

Breach of PHI at Texas Children’s Health Plan After Staff Member Sent Emails to Personal Account

A breach of HIPPA has occurred at the Texas Children’s Health Plan after it has been found that the protected health information (PHI) of 932 clients has been emailed to the personal private email account of a former member of staff. The violation of privacy was incident was first seen on September 21, 2017, although it was discovered that the former member of staff emailed the private data in November and December 2016. The emails...

Read More
New Variant of WannaCry Ransomware Detected in FirstHealth CyberAttack
Nov03

New Variant of WannaCry Ransomware Detected in FirstHealth CyberAttack

A new variant of the WannaCry ransomware has been detected in a cyber attack on FirstHealth of the Carolinas, a Pinehurst, SC-based not for profit health provider. WannaCry ransomware came to global attention in cybers attacks in May 2017. In excess of 230,000 computers were infected within one day of the worldwide attacks starting. The ransomware variant had wormlike features and was capable of spreading quickly and affecting all...

Read More
PHI of 8,000 Possibly Exposed in Following Office Break In
Nov02

PHI of 8,000 Possibly Exposed in Following Office Break In

An office break in and subsequent computer theft has lead to the possible exposing of the protected health information (PHI) of up to 8,000 clients of Brevard Physician Associates. has been exposed after a desktop computer was stolen in a burglary. The break in happened on Labor Day September 4, 2017 when Brevard Physician Associates business premises was closed. Thieves gained access to the offices early that morning and illegally...

Read More
Consolidated Inc. Data Breach Impacts 21,856 People
Oct29

Consolidated Inc. Data Breach Impacts 21,856 People

Nebraska-based CBS Consolidated Inc., operating as Cornerstone Business & Management Solutions, completed a routine audit of system logs on July 10, 2017 and found an unfamiliar account on the server. Closer inspection of that account showed it was being used to download sensitive data from the server, including the protected health information of patients that used its medical supplies. 21,856 people who received durable medical...

Read More
3,725 Veterans Have Their PHI Exposed Due to Missing Laptop
Oct27

3,725 Veterans Have Their PHI Exposed Due to Missing Laptop

A laptop computer, no longer in use, owned by the Mann-Grandstaff VA Medical Center (MGVAMC) in Spokane, WA, has gone missing, potentially leading to the exposure of sensitive patient data. The laptop was linked to a hematology analyzer and held data related to hematology tests. The laptop was in operation between April 2013 and May 2016, but was put out of use when the device became unusable. The laptop, which had been purchased from...

Read More
Data Breaches Drop For Second Consecutive Month
Oct26

Data Breaches Drop For Second Consecutive Month

The latest report of the Breach Barometer from Protenus/Databreaches.net Healthcare shows that data violations have dropped for the second consecutive month, according to . In August, there were 33 reported healthcare data violations, down from 36 incidents in July and 56 in June. While the drop int he number of data breaches is encouraging, that is still more than one healthcare data breach per day. While it was the second best month...

Read More
Multiple Security Weaknesses in Alabama’s Medicaid Management Information System OIG Identified
Oct24

Multiple Security Weaknesses in Alabama’s Medicaid Management Information System OIG Identified

The HHS’ Office of Inspector General (OIG) has completed an audit of Alabama’s Medicaid data and information systems to adetermine whether the state was in compliance with federal regulations. The review included the Medicaid Management Information System (MMIS) and associated policies and processes. OIG also carried out a vulnerability scan on networked devices, databases, websites, and servers to identify vulnerabilities that could...

Read More
PHI of 10,500 Patients Found in Illinois Basement
Oct18

PHI of 10,500 Patients Found in Illinois Basement

The medical history of more than 10,000 patients have been discovered in a basement in Aurora, Illinois. The documentation was located at the house, rented from Naperville-based psychiatrist Dr. Riaz Baber, M.D., by the woman who rented it. The files had been stored in the basement for at least 4 years. The female tenant, Barbara Jarvis-Neavins, claims that she was given access to the basement by the psychiatrist’s wife when workmen...

Read More
51,000 Plan Subscribers Hit by Network Health Phishing Attack
Oct16

51,000 Plan Subscribers Hit by Network Health Phishing Attack

Network Health has advised 51,232 of its plan subscribers that some of their protected health information (PHI) has possibly been accessed by unauthorized people. In August 2017, some Network Health Wisconsin-based employees received sophisticated phishing emails. Two of those staff members responded to the scam email and divulged their login credentials to the attackers, who used the details to gain access to their private email...

Read More
Hacking Group ‘The Dark Overlord’ Attacks Another Healthcare Organization
Oct09

Hacking Group ‘The Dark Overlord’ Attacks Another Healthcare Organization

After a seemingly prolonged period of inactivity, the hacking group TheDarkOverlord has revealed another attack on a U.S. healthcare supplier, Mass-based SMART Physical Therapy (SMART PT). The hack reportedly happened on September 13, 2017, with the announcement of the data theft released by TDO on Twitter on Friday 22, 2017.  No details were given as to how access to the data was gained, although it was revealed to databreaches.net...

Read More
Catholic Charities of the Diocese of Albany Discovers Long-Term Malware Infection
Oct09

Catholic Charities of the Diocese of Albany Discovers Long-Term Malware Infection

Catholic Charities of the Diocese of Albany (CCDA) has discovered, during a software upgrade in August 2017, that malware  was installed on one of the computer servers used by its Glens Falls premise, which provides services in Saratoga, Warren and Washington Counties in New York. A quick response was taken to block access to the server and CCDA called in a computer security firm to carry out an investigation into the unauthorized...

Read More
128,000 Arkansas Patients Attacked by Ransomware
Oct05

128,000 Arkansas Patients Attacked by Ransomware

128,000 patients at the Arkansas Oral Facial Surgery Center in Fayetteville have had their private information potentially impacted following a a ransomware. Ransomware was believed to have been placed on its network between July 25 and 26, 2017. The attack was identified quickly, although not before files, x-ray images, and documents had been encrypted. The incident did not break through the encryption of its patient database, except...

Read More
Medical Records Illegally Acccessed at PeaceHealth Over Six-Year Period
Oct04

Medical Records Illegally Acccessed at PeaceHealth Over Six-Year Period

It has been discovered that the medical records of almost 2,000 patients was illegally accessed by a former employee at PeaceHealth, a not-for-profit Catholic health system based in Vancouver, WA.   The unauthorized access was identified by PeaceHealth on August 9, 2017, leading tyo an investigation. PeaceHealth found the inappropriate access started in November 2011 and went on until July 2017. The inquiry revealed that Social...

Read More
Ransomware and Phishing Rated Top Threats by IT Professionals
Oct03

Ransomware and Phishing Rated Top Threats by IT Professionals

A recent survey by Cyren, conducted by Osterman Research, has revealed the biggest concerns of IT professionals are ransomware and phishing. When asked about their biggest security concerns, 62% said ransomware, 61% said phishing, and 54% said data breaches. The survey also showed that investment in cyber defenses has increased, yet for many firms, even further investment in security solutions has failed to prevent data breaches. It...

Read More
1,140 Patients Have Private Data Violated at Our Lady of the Angels Hospital
Oct03

1,140 Patients Have Private Data Violated at Our Lady of the Angels Hospital

An investigation has show that a former member of staff obtained the medical records of 1,140 patients without authorization at Our Lady of the Angels Hospital. The former staff member had been granted access to the protected health information in order to conduct work duties; however, hospital staff found that the employee was accessing medical records without any acceptable work reason for doing so. The unauthorized access was found...

Read More
Mercy Health Love County Hospital Breach Might have Exposed Records of 13,000 Patients
Oct02

Mercy Health Love County Hospital Breach Might have Exposed Records of 13,000 Patients

The personal data of more than 13,000 patients at Mercy Health Love County Hospital in Oklahoma may have been breached. On June 23, 2017, the hospital found that an employee had stolen a laptop computer and paper records from a storage unit which was owned by the hospital. The breach notice broadcast by Mercy Health revealed that the records of 10 patients were taken from the device along with the laptop. The theft of PHI was first...

Read More

Hurricane Maria Disaster Zone: Partial HIPAA Privacy Rule Waiver Issued by HHS

A third HIPAA waiver has been issued by the U.S. Department of Health and Human Services, following applying two earlier partial waivers of HIPAA sanctions and penalties in areas affected by hurricanes previously in 2017. On this occasion the waiver is in relation to the Hurricane Maria disaster zone in Puerto Rico and the U.S. Virgin Islands. As with the waivers issued in relation to Hurricane Harvey and Hurricane Irma, the waiver...

Read More
Equifax Announces Second Data Breach Occurred Five Months Ago
Sep19

Equifax Announces Second Data Breach Occurred Five Months Ago

The Equifax data breach that exposed the records of 143 million consumers was not the only data breach the firm experienced this year. Equifax has said a second, earlier breach was discovered in March. A statement released by the credit monitoring agency says the two attacks were unrelated; however, Bloomberg suggests one person close to the investigation suggested both attacks were performed by the same individuals. It may be that...

Read More
Piriform Alerts Users That CCleaner Contained Malware
Sep19

Piriform Alerts Users That CCleaner Contained Malware

Piriform’s CCleaner, a free PC cleaning app with 130 million users around the world, has been discovered to contain malware. Researchers at Cisco Talos recently announced that CCleaner contains a backdoor that was inserted by hackers. The backdoor was present in two versions of the application – the 32-bit version of CCleaner 5.33.6162 and CCleaner Cloud 1.07.3191. The backdoor was inserted into those versions at least a month before...

Read More
Beware of Equifax Data Breach Phishing Scams
Sep14

Beware of Equifax Data Breach Phishing Scams

Consumers are being warned to be on high alert for Equifax data breach phishing scams, telephone and text message scams, and fraudulent use of their sensitive information. Almost Half of All Americans Impacted by Equifax Data Breach The massive Equifax data breach has resulted in the personal information of almost half of the population of the United States being stolen. More than 143 million Americans have been impacted by the...

Read More
Equifax Data Breach Affects 143 Million Consumers
Sep10

Equifax Data Breach Affects 143 Million Consumers

A massive Equifax data breach has resulted in the exposure, and possible theft, of 143 million American’s records, including highly sensitive data such as Social Security numbers.  To put that figure into perspective, that’s virtually half the population of the United States. Hackers gained access to a website database via an unpatched vulnerability in a web application. Security experts are suggesting the vulnerability was in Apache...

Read More
Kaleida Health Suffers Second Phishing Attack in Space of 2 Months
Sep01

Kaleida Health Suffers Second Phishing Attack in Space of 2 Months

Kaleida Health has announced an employee has fallen for a phishing scam that resulted in the protected health information of 744 patients being exposed, and potentially obtained by an unauthorized individual. The phishing attack occurred on June 26, 2017 and resulted in access being gained to the employee’s email account. The email account contained a range of protected health information including names, medical record numbers,...

Read More
City of Hope Phishing Attack Impacts 3,400 Patients
Aug14

City of Hope Phishing Attack Impacts 3,400 Patients

A recent City of Hope phishing attack has potentially resulted in the PHI of 3,400 patients being accessed by cybercriminals. City of Hope employees were sent phishing emails on May 31 and June 2, 2017. Four employees responded to the emails and disclosed their email credentials to the attackers. Four email accounts were accessed by the attackers. While the email accounts contained sensitive information, City of Hope officials do not...

Read More
2,789 Patients’ PHI Compromised in Phishing Attack
Aug02

2,789 Patients’ PHI Compromised in Phishing Attack

Kaleida Health has announced that a phishing attack has resulted in an email account being compromised, and along with it, the protected health information of 2,789 of its patients. Kaleida Health became aware of the incident on May 24, 2017, and called on a computer forensics firm to assess which patients have been affected and the extent to which its systems had been compromised. The firm determined the attack was limited to one...

Read More
Anthem Inc Announces 18,580 Record Data Breach
Jul31

Anthem Inc Announces 18,580 Record Data Breach

Anthem Inc., has recently settled a class-action lawsuit filed by the victims of its 2015 data breach that saw 78.8 million health insurance records stolen by hackers. The insurer settled the case for $118 million. A month after the settlement was announced, the company has confirmed its plan members have been affected by another data breach. This time the insurance records of 18,580 individuals have been exposed. The breach occurred...

Read More
ITRC Report Shows Hacking Continues to be the Main Cause of Data Breaches
Jul21

ITRC Report Shows Hacking Continues to be the Main Cause of Data Breaches

The main cause of data breaches in the United States is still hacking according to a new report released by the Identity Theft Resource Center (ITRC). The report also shows that in the year to June 30, 2017, U.S data breaches have hit a record high, with 791 confirmed data breaches reported. The data breach count has increased by 29% since the report was issued last year, with ITRC expecting the data breaches to reach 1,500 by the end...

Read More
Ransomware Investigation Uncovered 15-Month Data Breach
Jul20

Ransomware Investigation Uncovered 15-Month Data Breach

When Peachtree Neurological Clinic was attacked with ransomware all was not lost as data were recoverable from backups; however, the ransomware investigation revealed something far worse. Its systems had been breached 15 months previously. The ransomware incident resulted in the encryption of the provider’s electronic medical records. A ransom demand was issued. Payment was required in exchange for the keys to unlock the encryption....

Read More
Healthcare Data Breach Resolution Costs Fall
Jun26

Healthcare Data Breach Resolution Costs Fall

Healthcare data breach resolution costs are still higher than all other industries, but the latest Ponemon Institute/IBM Security study has shown that for the first time ever, those costs have fallen year-over-year. For seven years, Ponemon/IBM have been conducting their cost of a data breach study, and each year the costs of resolving data breaches has risen. However, this year, average breach resolution costs fell by around 10%. The...

Read More
Southern Oregon University Phishing Attack Results in Theft of $1.9 Million
Jun15

Southern Oregon University Phishing Attack Results in Theft of $1.9 Million

A Southern Oregon University phishing attack has resulted in the theft of $1.9 million from the university’s accounts – Arguably the worst phishing attack of the year to date. While the Southern Oregon University phishing attack stands out due to the amount of money obtained by the attackers, it is sadly just one of a large number of attacks that have affected U.S organizations this year. The scam is known as Business Email Compromise...

Read More
Patient Portal Security Flaw Exposed Data of Molina Healthcare Patients
May31

Patient Portal Security Flaw Exposed Data of Molina Healthcare Patients

A patient portal security flaw has resulted in the exposure of patient claims information. Claims information had been uploaded to the patient portal of the Long Beach, California-based managed care company Molina Healthcare; however, the information was accessible without any authentication checks. Patients who had been sent a link to their claims could click those links without any checks being performed to ensure they were the...

Read More
Children’s Mercy Hospital Alerts 5,500 Patients to a Potential PHI Breach
May31

Children’s Mercy Hospital Alerts 5,500 Patients to a Potential PHI Breach

Children’s Mercy Hospital in Kansas City has started notifying more than 5,500 patients that some of their electronic protected health information has been exposed online. Personally identifiable information and protected health information were discovered to have been uploaded to a website set up by one of the hospital’s physicians. The website was intended to serve as an educational resource. The physician had protected the...

Read More
Healthcare Data Breach Reporting Improves; IT Security Incidents Rise
May23

Healthcare Data Breach Reporting Improves; IT Security Incidents Rise

The monthly Breach Barometer Report from Protenus shows healthcare data breach reporting is improving, data breaches are down, and there was a significant reduction in healthcare data breach victims in April, 2017. The Health Insurance Portability and Accountability Act (HIPAA) places a time limit on reporting healthcare data breaches to the HHS’ Office for Civil Rights (OCR) and sending breach notifications to patients. That time...

Read More
True Health Diagnostics Website Flaw Exposes Patient Records
May09

True Health Diagnostics Website Flaw Exposes Patient Records

The health reports of patients of the True Health Group have been exposed online and were viewable by other patients for months – most likely years – due to a True Health Diagnostics website flaw. True Health Diagnostics is a Frisco, TX-based company that offers a wide range of testing procedures for genetic and other diseases. The company operates a web portal which patients can access to view their test results. Logging into...

Read More
Suspected Ransomware Attack Impacts Erie County Medical Center Patients
Apr12

Suspected Ransomware Attack Impacts Erie County Medical Center Patients

It has been a bad month for healthcare industry ransomware attacks and malware infections. A ransomware attack on Ashland Women’s Health was confirmed this week which impacted 19,272 patients and last week an ABCD pediatrics ransomware attack impacted 55,447 patients. On Sunday, another healthcare organization discovered a ‘virus’ had arrived via email and made its way onto the network. Erie County Medical Center in Buffalo, New York...

Read More
Ashland Women’s Health Ransomware Attack Confirmed
Apr12

Ashland Women’s Health Ransomware Attack Confirmed

The ransomware attacks on healthcare providers are continuing, with one of the latest victims a small one-practitioner gynecology practice in Ashland, Kentucky. Ashland Women’s Health recently informed the Department of Health and Human Services’ that the attack had potentially resulted in patients’ protected health information being accessed by the attackers. Ransomware attacks are reportable to OCR unless a healthcare provider can...

Read More
Study Analyses Hospital Data Breach Risk
Apr06

Study Analyses Hospital Data Breach Risk

A recent study published in JAMA Internal Medicine looked at the hospital data breach risk and determined which organizations are most at risk of experiencing data breaches. The researchers discovered that hospital data breach risk is positively linked with the size of the hospital. Larger hospitals are more likely to experience data breaches, as are hospitals with a strong focus on teaching. Smaller hospitals may have smaller budgets...

Read More
Ransomware Attack on ABCD Pediatrics Impacts 55,000 Patients
Apr05

Ransomware Attack on ABCD Pediatrics Impacts 55,000 Patients

The protected health information of more than 55,000 patients has potentially been compromised in a recent ransomware attack on ABCD Pediatrics. Attackers gained access to ABCD Pediatrics’ servers and Dharma ransomware was installed, resulting in the encryption of some PHI. Dharma ransomware is a variant of CrySiS ransomware. CrySiS ransomware was one of the most popular ransomware variants in 2016, although late last year ESET...

Read More
Med Center Health Data Breach Impacts 160,000 Patients
Mar24

Med Center Health Data Breach Impacts 160,000 Patients

The Federal Bureau of Investigation is investigating a major Med Center Health data breach that impacts many affiliates and around 160,000 patients. The Med Center Health data breach was not the result of hackers, instead data is believed to have been stolen by a former employee. The employee is understood to have taken a wide range of sensitive data including patients’ names, addresses, insurance details, procedure codes, billing...

Read More
Insider Healthcare Data Breaches Soar in February
Mar20

Insider Healthcare Data Breaches Soar in February

February saw a major increase in insider healthcare data breaches, according to the latest healthcare data breach report from Protenus. The February Breach Barometer report indicates there were 31 reported healthcare data breaches in February. While the figure is on a par with January, which also saw 31 healthcare data breaches reported, there was a significant rise in insider healthcare data breaches last month. Insider incidents...

Read More
Largest Healthcare W-2 Phishing Scam of 2017: 17,000 Employees Impacted
Feb23

Largest Healthcare W-2 Phishing Scam of 2017: 17,000 Employees Impacted

The largest healthcare W-2 phishing scam of the year to date has recently been reported by American Senior Communities of Indiana. While many organizations have already reported being fooled by phishing emails this tax season, this was the largest healthcare W-2 phishing scam by some distance, impacting more than 17,000 of the organization’s employees. This year has already seen 74 organizations scammed, and that number is certain to...

Read More
Google Removes Ransomware App from Its Play Store
Jan26

Google Removes Ransomware App from Its Play Store

An app in the Google Play store has been discovered to have been loaded with ransomware. Google has recently removed the ransomware app from its Play Store, although it is not known how many individuals have already been infected. The app in question is called EnergyRescue. The purpose of the app was to help users manage the use of their phone batteries. However, that was not the real purpose of the app. According to researchers at...

Read More
SEC Investigation of Yahoo Breach Launched
Jan25

SEC Investigation of Yahoo Breach Launched

The U.S. Securities and Exchange Commission will be investigating Yahoo over the two massive data breaches announced late last year. The SEC investigation of Yahoo will not be concerned with the controls put in place by the company to prevent data breaches, but whether Yahoo should have informed its investors of the breaches more quickly. In September, Yahoo announced that it had experienced a massive data breaches that had impacted...

Read More
Sentara Healthcare Data Breach Investigated
Jan16

Sentara Healthcare Data Breach Investigated

Sentara Healthcare is investigating a data breach suffered by one of its third-party vendors that resulted in patients’ protected health information being accessed by an unauthorized individual. Sentara Health was notified of a potential ePHI breach by law enforcement on November 17, 2016. An internal investigation was then immediately launched to determine the source of the breach, which led to one of its vendors. The vendor of the...

Read More
Ransomware Infection Impacting 19,000 Individuals Investigated by Highmark BCBS of Delaware
Jan15

Ransomware Infection Impacting 19,000 Individuals Investigated by Highmark BCBS of Delaware

A subcontractor of Highmark Blue Cross Blue Shield of Delaware has experienced a ransomware infection and cyberattack that has potentially compromised the personal information of approximately 19,000 beneficiaries of employer-paid health plans. The ransomware attack occurred at Highmark BCBS subcontractor Summit Reinsurance Services on August 5, 2016, although affected individuals have only just been notified of the incident. An...

Read More
ESEA Hacking Incident Results in Leaking of 1.5 Million Player Profiles
Jan09

ESEA Hacking Incident Results in Leaking of 1.5 Million Player Profiles

E-Sports Entertainment Association (ESEA) has announced it has been the victim of an extortion attempt after a hacker infiltrated one of its game servers. The ESEA hacking incident resulted in the theft of 1.5 million player profiles and other user data. The hack occurred on December 27, 2016. Access was gained to an ESEA game server, data were exfiltrated, and a $100,000 ransom demand was issued by the attacker. The hacker said that...

Read More
Los Angeles Valley College Ransomware Attack: 28K Paid for Key
Jan09

Los Angeles Valley College Ransomware Attack: 28K Paid for Key

A Los Angeles Valley College ransomware attack on January 6, 2017 resulted in student data being locked and 1,800 college administrators and teachers being prevented from gaining access to their computer system and essential files. Ransomware is malicious software that encrypts a wide range of file types, including databases. The data is not moved or copied, just renamed and encrypted. In order to unlock the encryption, a unique key...

Read More
Switcher Trojan Infects Wi-Fi Routers via Android Mobiles
Jan03

Switcher Trojan Infects Wi-Fi Routers via Android Mobiles

An incredibly dangerous new Trojan has been detected by Kaspersky Lab which is being used to attack Wi-Fi routers via Android devices. The new malware – named the Switcher Trojan – is currently only being used to attack routers in China, although Kaspersky Lab researchers warn that this new malware signals a dangerous new trend – One that could well become a global problem. The typical way that hackers gain control of Wi-Fi...

Read More
New Hampshire Hospital Data Breach Result of Human Error
Dec30

New Hampshire Hospital Data Breach Result of Human Error

A recent New Hampshire Hospital data breach has resulted in the disclosure of the protected health information of 15,000 patients. The Department of Health and Human Services (DHHS) psychiatric hospital data breach occurred in October last year. The person responsible for the breach was identified at the time, but the incident was not deemed to be severe and the attack went unreported. In October 2015, a patient of New Hampshire...

Read More
Yahoo Breach the Work of Cybercriminals with Nation-State Connections
Dec20

Yahoo Breach the Work of Cybercriminals with Nation-State Connections

Data from the Yahoo breach of 1 billion user accounts has already been sold on the black market on multiple occasions, according to InfoArmor. While Yahoo maintains that the attack was performed by a nation-state sponsored hacking group, InfoArmor’s research suggests otherwise and many security experts agree. Instead of a nation-state sponsored hacking group, it has been suggested that it was a criminal organization behind the attack,...

Read More
November 2016 Breach Barometer Report: Worst Month for Health Data Breaches
Dec16

November 2016 Breach Barometer Report: Worst Month for Health Data Breaches

The November 2016 Breach Barometer Report from Protenus provides a snapshot of the state of healthcare data security, cataloging the health data breaches that occurred last month. The report is released each month and provides a useful record of HIPAA breaches throughout the year. While the total number of health records exposed or stolen in November fell from the previous month, and November figures are the seventh lowest of the...

Read More
1Bn Accounts Compromised in 2013 Yahoo Cyberattack
Dec15

1Bn Accounts Compromised in 2013 Yahoo Cyberattack

In September 2016, Yahoo announced it had been hacked and half a billion accounts were compromised; however, yesterday it was revealed that a 2013 Yahoo cyberattack that was twice the size. The credentials of more than 1 billion users were reportedly stolen in the 2013 Yahoo cyberattack. The Yahoo cyberattack announced in September was the largest data breach ever reported. This was particularly bad news as the company had just agreed...

Read More
Madison County Pays $220,000 to Improve Defenses After Ransomware Attack
Dec14

Madison County Pays $220,000 to Improve Defenses After Ransomware Attack

The Madison County ransomware attack that took out many of the county’s computer systems last month could only be resolved by paying a $21,000 ransom as no viable backup existed. On the advice of the County’s insurance company, the ransom was paid. Madison County will not be required to cover the cost of the ransom, only the deductible. However, a ransomware attack costs considerably more to resolve than the cost of the ransom to...

Read More
Arkansas Sherriff’s Office Pays 3 Bitcoin Ransom to Unlock Files
Dec14

Arkansas Sherriff’s Office Pays 3 Bitcoin Ransom to Unlock Files

The cybercriminals behind a ransomware attack on an Arkansas Sherriff’s office have been paid 3 Bitcoin ($2,400) to supply the keys to decrypt files locked by the ransomware. The ransomware attack on the Carrol County Sheriff’s office occurred on December 5, 2016 and resulted in its computer systems being taken out of action for just under a week. The attackers used a fairly new ransomware variant called Dharma, which is from the same...

Read More
Dailymotion Cyberattack Impacts 85 Million Users
Dec06

Dailymotion Cyberattack Impacts 85 Million Users

According to LeakedSource, a recent Dailymotion cyberattack has resulted in email addresses, usernames, and passwords being obtained by hackers. Dailymotion is one of the leading web video platforms and is rated by Alexa as the 113th most popular website. In April 2015, the site attracted 148 million visitors. The Dailymotion cyberattack is understood to have occurred on or around October 20, 2016, which means account credentials may...

Read More
San Francisco Transport System Ransomware Attack Reported
Nov28

San Francisco Transport System Ransomware Attack Reported

A San Francisco Transport System ransomware attack occurred this weekend that resulted computers used by the city’s light rail system being encrypted. The attackers demanded a 100 Bitcoin ($70,000) ransom to supply the key to unlock the encryption. A statement released by the San Francisco Municipal Transportation Agency (SFMTA) confirmed that while the attack resulted in computer systems being taken out of action, transport was...

Read More
Facebook’s Darknet Password Buying Practice Revealed
Nov17

Facebook’s Darknet Password Buying Practice Revealed

The data obtained from cyberattacks is often listed for sale on Darknet marketplaces for cybercriminals to purchase, yet who actually buys these data? Passwords are bought by cybercriminals to gain access to users’ online accounts for a wide variety of nefarious activities, but it is not only criminals that are interested in these data. It has recently emerged that Facebook also buys stolen passwords. Facebook CSO Alex Stamos revealed...

Read More
Light Cast on Cause of the Tesco Bank Hack
Nov16

Light Cast on Cause of the Tesco Bank Hack

The cause of the Tesco bank hack is not yet known, although security firm Digital Shadows has been narrowing down the possible causes that led to the criminals siphoning off $3.1 million from customers’ bank accounts. Tesco believed up to 20,000 customers may have been affected by the cyberattack on November 5 and 6, although the investigation into the attack has revealed that around 9,000 customers had funds taken out of their...

Read More
Patients Informed of Seguin Dermatology Ransomware Attack
Nov15

Patients Informed of Seguin Dermatology Ransomware Attack

Patients have been warned of a Seguin Dermatology ransomware attack that may have resulted in their electronic protected health information being accessed by the attackers. The Texas dermatology clinic was attacked on or around September 12, 2016, although it took until October 26 for a full forensic analysis of the affected computer to be completed. The investigation of the attack did not confirm that patient data had been stolen,...

Read More
Massive FriendFinder Data Breach Announced: 412 Million Records Exposed
Nov15

Massive FriendFinder Data Breach Announced: 412 Million Records Exposed

A massive FriendFinder data breach has been discovered that impacts more than 412 million users of six adult-oriented friendship, dating, and porn websites. Six databases used by Friend Finder Network Inc., were hacked in October this year, with the hackers managing to steal credentials from hundreds of millions of accounts. The worst hit was the adult dating website Adultfriendfinder.com, which is touted as the world’s largest sex...

Read More
Hackers May Have Used Cookies for Persistent Access to Yahoo Accounts
Nov10

Hackers May Have Used Cookies for Persistent Access to Yahoo Accounts

Yahoo has revealed more about the massive data breach experienced in 2014 and says that in addition to the initial hack that provided hackers with users’ credentials, those actors may also have used cookies to bypass Yahoo security measures. This would have allowed the hackers to access users’ accounts for a considerable period of time after the initial attack. In a US Securities and Exchange Commission filing, Yahoo explained that...

Read More
2016: A Particularly Bad Year for Data Breaches
Nov10

2016: A Particularly Bad Year for Data Breaches

Take a look at any of the websites that track data breaches and one thing is clear: Data breaches are now occurring much more frequently than in previous years, even though organizations have increased cybersecurity budgets and are committing more resources to breach prevention. Since records of data breaches fist started being kept by the Identity Theft Resource Center (ITRC) in 2005, there have been 6,619 data breaches and more than...

Read More
Madison County Ransomware Attack: Ransom Paid to Unlock Files
Nov09

Madison County Ransomware Attack: Ransom Paid to Unlock Files

A Madison County ransomware attack over the weekend has resulted in most of the Indiana county’s computer systems being taken out of action, causing major disruption to county services. The ransomware is believed to have been installed on Saturday November 4, and was noticed by Central Dispatch after access to files could not be gained. The voting system was unaffected and emergency services continued to run as normal, although the...

Read More
BEC Attack on El Paso Resulted in Theft of $3.2 Million
Nov04

BEC Attack on El Paso Resulted in Theft of $3.2 Million

The threat from business email compromise attacks has been clearly highlighted by the recently discovered BEC attack on El Paso, TX. According to the Mayor of El Paso, Oscar Leeser, city officials notified law enforcement in October that employees had fallen for phishing scams. Those scams resulted in the attackers stealing $3.2 million in funds from the city. The BEC attack on El Paso was similar to numerous attacks that have taken...

Read More
UK Government to Commit £1.9bn to Cybersecurity Defenses
Oct31

UK Government to Commit £1.9bn to Cybersecurity Defenses

The increasing threat to the UK’s critical infrastructure has prompted the government to commit more funds to cybersecurity defenses. In a recent speech, the UK chancellor Phillip Hammond promised to spend a further £1.9 billion on defenses to prevent foreign attackers from conducting successful attacks. Hammond believes further investment is required in order for the UK to continue to be able to mount a defense against increasingly...

Read More
4.3 Million IoT Devices Recalled in Effort to Curb DDoS Attacks
Oct26

4.3 Million IoT Devices Recalled in Effort to Curb DDoS Attacks

Hangzhou Xiongmai Technology – a major Chinese electronics company – has announced it is recalling thousands of IoT devices after they were hijacked by hackers and used in a spate of massive distributed denial of service (DDoS) attacks. Many of its devices have been added to the Mirai botnet – a network hundreds of thousands of IoT devices used to flood Internet services with traffic rendering them unavailable. The Mirai botnet...

Read More
Phishing Scam Fools Baystate Health Employees and Exposes PHI
Oct24

Phishing Scam Fools Baystate Health Employees and Exposes PHI

Phishing is a technique commonly used by cybercriminals as an easy way of gaining access to healthcare data. The aim of the scam is to convince individuals into revealing login credentials or infecting their computers with malware. Even when robust cybersecurity defenses are employed to prevent networks and databases from attack, those protections can easily be undone by employees. If employees can be convinced to click malicious...

Read More
Weebly Data Breach Impacts 43 Million Customers
Oct21

Weebly Data Breach Impacts 43 Million Customers

A massive Weebly data breach has been uncovered that impacts 43,430,316 customers who have previously created websites using the drag and drop website creation platform. The data breach is understood to have occurred around 8 months ago, although Weebly has only just been informed that it was attacked. Rapid action was taken to shore up security and protect customers. The security breach came to light after an anonymous individual...

Read More
2012 LinkedIn Data Breach: Suspect Arrested in Prague
Oct20

2012 LinkedIn Data Breach: Suspect Arrested in Prague

The 2012 LinkedIn data breach was one of the largest ever reported. More than 117 million user credentials were stolen in the attack. This year those records were listed for sale online, although the individuals behind the cyberattack has remained a mystery. The data were listed for sale on Darknet marketplace theRealDeal recently by a hacker going by the name Peace_of_Mind (Peace). However, it is unclear whether Peace was responsible...

Read More
Rainbow Children’s Clinic Ransomware Attack Announced
Oct18

Rainbow Children’s Clinic Ransomware Attack Announced

A recent Rainbow Children’s Clinic ransomware attack has resulted in the protected health information of patients being encrypted and made inaccessible to pediatricians and other clinic staff members. Rainbow Children’s Clinic provides medical services to children in the Arlington and Grand Prairie areas of Texas. On August 3, 2016, the clinic was prevented from accessing certain data that were stored on its servers. An investigation...

Read More
CalOptima Data Breach Announced: 56K Members Impacted
Oct18

CalOptima Data Breach Announced: 56K Members Impacted

A second CalOptima data breach has been announced just a few weeks after 1,000 members were informed that some of their protected health information had been exposed due to a printing error. CalOptima spokeswoman Bridget Kelly confirmed to the Orange County Register that the latest CalOptima data breach has impacted approximately 7% of CalOptima members – around 56,000 individuals. CalOptima, a public agency created to manage the...

Read More
Healthcare Lawyers Increasingly Involved in Cybersecurity Matters
Oct17

Healthcare Lawyers Increasingly Involved in Cybersecurity Matters

A recent survey conducted by Bloomberg Law and the American Health Lawyers Association (AHLA) asked more than 300 healthcare attorneys from across the United States about their involvement in cybersecurity matters and their opinions on their future involvement in data breaches and cyber-attacks. The survey revealed the extent to which healthcare attorneys are being called upon to deal with cybersecurity matters and showed attorneys...

Read More
Saint Francis Health System Alerts Patients to Warren Clinic Data Breach
Oct15

Saint Francis Health System Alerts Patients to Warren Clinic Data Breach

Tulsa, Oklahoma-based Saint Francis Health System has experienced a cyberattack that has resulted in the theft of patient data. The incident does not impact all Saint Francis patients, only certain patients that have previously received medical services at the Warren Clinic – a network of 70 clinics in Tulsa and eastern Oklahoma. The cyberattack was not detected at the time. Instead, Saint Francis Health System was informed that an...

Read More
Integrity Transitional Hospital Hack Impacts Multiple Healthcare Providers
Oct15

Integrity Transitional Hospital Hack Impacts Multiple Healthcare Providers

Denton, Texas-based Integrity Transitional Hospital has notified patients, many of whom are children, that some of their protected health information has potentially been viewed and copied by an unauthorized individual who managed to gain access to one of its computer systems. A network intrusion was discovered on August 15, 2016 after suspicious network activity was identified. Rapid action was taken to shut down access and prevent...

Read More
Massive Amazon Data Breach? Just a Precautionary Password Reset Apparently
Oct13

Massive Amazon Data Breach? Just a Precautionary Password Reset Apparently

Rumors have been circulating that a massive Amazon data breach had occurred following the decision by the online retail giant to reset the passwords of users’ accounts. Amazon started resetting the passwords on certain accounts on Saturday and the process is ongoing. Emails have now been sent to users to advise them that their passwords were resent as a security precaution. The decision was taken to protect customers whose credentials...

Read More
Apria Healthcare Data Breach Discovered
Oct13

Apria Healthcare Data Breach Discovered

A recently discovered Apria Healthcare data breach has been discovered which has impacted 1,987 patients. the security breach has resulted in the exposure of a wide range of patient data. The cyberattack was discovered on August 5, 2016 and rapid action was taken to shut down access to Apria Healthcare’s systems. An external computer forensics firm was called upon to investigate the Apria Healthcare data breach. The investigation...

Read More
Peachtree Orthopedics Discovers Patient Database has been Hacked
Oct13

Peachtree Orthopedics Discovers Patient Database has been Hacked

Peachtree Orthopedics has announced a hacker gained access to a patient database containing names, addresses, dates of birth, email addresses, treatment codes, prescription records, and Social Security numbers. The breach notification letters sent to patients on October 7, 2016 explain that the hacker potentially stole the contents of the database. The data breach was discovered on September 22. Rapid action was taken to secure...

Read More
NHS Ransomware Attacks Have Increased by 400%
Oct10

NHS Ransomware Attacks Have Increased by 400%

Attacks on healthcare organizations in the United States have increased sharply this year, but the country is not alone: In the UK, NHS ransomware attacks have also soared in recent months as the UK’s National Health Service is increasingly being targeted by ransomware gangs. As in the United States, healthcare organizations are vulnerable to ransomware attacks and that has not escaped cyber-blackmailers’ attention. In the past 12...

Read More
Yahoo Acquisition Price May Be Reduced After Massive Data Breach
Oct07

Yahoo Acquisition Price May Be Reduced After Massive Data Breach

According to a recent article in the New York Post, the Yahoo acquisition price may be reduced following the massive data breach that was reported to have affected 500 million users. Prior to the announcement of the data breach, Verizon was due to buy Yahoo for $4.8 billion. The deal was arranged before news of the data breach broke, but not before the data breach actually occurred. The deal was arranged over the summer, but two weeks...

Read More
Marin Healthcare Ransomware Attack Reported
Oct06

Marin Healthcare Ransomware Attack Reported

A Marin Healthcare ransomware attack has been reported that resulted in sensitive patient data being encrypted. The attack affected one of Marin Healthcare’s vendors, Marin Medical Practices, which provides medical billing and EHR services. In accordance with HIPAA Rules, the vendor performed backups of protected health information. Under normal circumstances this would have allowed the organization to recover the locked files without...

Read More
Another Public Health Service Data Breach is Discovered
Oct03

Another Public Health Service Data Breach is Discovered

Another public health service data breach has recently been discovered. This time around it is current and former members of the Commissioned Corps that have been affected. This week the Surgeon General emailed current, former, and retired Commissioned Corps officers to alert them to a potential breach of their data after it was discovered that an unauthorized individual gained access the agency’s personnel system. The system is used...

Read More
Yahoo Cyberattack Potentially More than Twice Reported Size
Oct03

Yahoo Cyberattack Potentially More than Twice Reported Size

The massive Yahoo cyberattack was recently reported to have impacted 500 million users. Yahoo also claimed that the attack appeared to have been conducted by a nation-state backed hacker. However, security experts have questioned that claim, as the facts about the Yahoo cyberattack that have been released so far do not tally with a state-sponsored attack. Now, a former Yahoo executive has spoken out about the attack and says the Yahoo...

Read More
New Jersey Spine Center Ransomware Attack: No Alternative but to Pay Ransom
Sep30

New Jersey Spine Center Ransomware Attack: No Alternative but to Pay Ransom

A recent New Jersey Spine Center ransomware attack resulted in electronic patient health records being locked with powerful encryption. The attack involved the ransomware variant Cryptowall, which has been used in numerous attacks over the past few months. Unfortunately, while decryptors have been published for a number of ransomware variants, the latest version of Cryptowall has resisted security companies’ efforts to crack it....

Read More
State-Sponsored Hackers Not Responsible for Yahoo Breach, Says InfoArmor
Sep29

State-Sponsored Hackers Not Responsible for Yahoo Breach, Says InfoArmor

It was the biggest cyberattack ever reported, affecting more than 500 million individuals, but there is currently considerable debate as to who was responsible. Yahoo has announced that a state-sponsored attacker was behind the attack, yet many doubt this to be the case. Now independent security firm infoArmor claims that its research shows that state-sponsored hackers were not involved. Instead, it has been claimed the attack was...

Read More
1Tbps DDoS Attack Recorded by Web Hosting Company
Sep29

1Tbps DDoS Attack Recorded by Web Hosting Company

A series of DDoS attacks have hit a French web hosting company over the past few days, culminating in a 1Tbps DDoS attack – The largest DDoS attack ever reported. Denial-of-Service attacks have increased significantly in recent months; however, the scale of the recent DDoS attacks is particularly alarming. Attacks of 300+Gbps can cause significant damage, but even attacks on this scale were rare. However, in the space of a week two...

Read More
Hacking Group Holds WestPark Capital to Ransom
Sep28

Hacking Group Holds WestPark Capital to Ransom

After stealing data from a number of healthcare organizations and demanding a ransom not to release the information, the hacking group TheDarkOverlord has now targeted the investment bank WestPark Capital. A host of sensitive data including non-disclosure agreements, reports, and contracts were stolen from the firm and a ransom demand has been issued. If WestPark refuses to pay, the hacking group says it will publish the stolen data....

Read More
Yahoo Data Breach Confirmed: 500 Million Users Affected
Sep22

Yahoo Data Breach Confirmed: 500 Million Users Affected

Two months ago, a massive Yahoo data breach appeared to have been uncovered. The records of more than 200 million Yahoo email account holders seemed to have been listed for sale on a Darknet marketplace. The hacker who placed the listing on the site – Peace – had previously listed other large databases for sale, including the data from the MySpace and LinkedIn data breaches. Peace is the co-founder of the Darknet marketplace...

Read More
ClixSense Data Breach Reported: 6.6 Million Users Affected
Sep15

ClixSense Data Breach Reported: 6.6 Million Users Affected

A massive ClixSense data breach has occurred that has resulted in a treasure trove of user data being obtained by hackers. In total, the ClixSense data breach impacts more than 6.6 million users, 2.2 million of which have had their sensitive data dumped online. The data of the remaining 4.4 million users is being offered for sale online. ClixSense is an online service that pays its members to take part in online surveys. Due to the...

Read More
World Anti-Doping Agency Cyberattack: Olympics Stars’ Medical Files Published
Sep13

World Anti-Doping Agency Cyberattack: Olympics Stars’ Medical Files Published

The medical records of a number of leading U.S athletes have been leaked online. The data came from a hack of the World Anti-Doping Agency and Court of Arbitration for Sport (WADA-CAS). A group of hackers operating under the name Tsar Team / Fancy Bears successfully hacked WADA’s anti-doping administration and management system (ADAMS) database and stole sensitive data on U.S. athletes. The data have now been uploaded to the hacking...

Read More
Survey Reveals Extent of UK Ransomware Infections
Sep09

Survey Reveals Extent of UK Ransomware Infections

A recent survey conducted on more than 300 IT decision makers has revealed the extent of UK ransomware infections and provides some interesting insights into the lack of preparedness for attacks. The aim of the study was to raise awareness of the ransomware threat and show how much of an impact ransomware is having on businesses in the United Kingdom. The threat from ransomware has been widely documented over the course of the past 12...

Read More
18,000 Patients Impacted by Highline Medical Center Data Breach
Sep08

18,000 Patients Impacted by Highline Medical Center Data Breach

CHI Franciscan Health Highline Medical Center has notified 18,399 patients that some of their protected health information has been exposed on the Internet as a result of an error made by a business associate. The HIPAA business associate responsible for the breach was R-C Healthcare Management. An employee of the firm had made an error with the configuration of a firewall after maintenance work was conducted. The error was made on...

Read More
98 Million Records from 2012 Rambler.ru Data Breach Dumped
Sep06

98 Million Records from 2012 Rambler.ru Data Breach Dumped

The Rambler.ru data breach that occurred on February 17, 2012 involved the theft of usernames, plain text passwords, ICQ numbers, and other internal data. In total, the credentials of 98,167,935 users were stolen in the cyberattack. Email addresses were also compromised, since the username is used to create email addresses. The same individual responsible for providing the last.fm data to LeakedSource has handed over the datasets from...

Read More
2012 Last.fm Data Breach Affects 43 Million Users
Sep01

2012 Last.fm Data Breach Affects 43 Million Users

A number of mega breaches have come to light in 2016. The list continues to grow, with news that the data from a 2012 Last.fm data breach have just surfaced. The last.fm data breach in question occurred on March 22, 2012. It is now known that 43,570,999 login credentials were stolen in the cyberattack. In contrast to some of the large-scale data breaches from 2012, the music tracking website encrypted passwords; however, the method...

Read More
1.1 Billion Records Exposed in 2016 Data Breaches
Sep01

1.1 Billion Records Exposed in 2016 Data Breaches

According to a new data breach report published by Risk Based Security, more than 1.1 billion records have been exposed or stolen in the first 6 months of 2016. Those figures make 2016 the worst ever year for data breaches by some distance and the year is far from over yet. The good news, if you can call it that, is compared to the first 6 months of 2015, data breaches are down by 17%. Unfortunately, cyberattacks on organizations are...

Read More
Scan Health Data Breach Involved Unauthorized Use of Legitimate Login Credentials
Aug31

Scan Health Data Breach Involved Unauthorized Use of Legitimate Login Credentials

On June 27, 2016, SCAN Health discovered that an unauthorized individual had gained access to the data of its members. Sales contact sheets had been accessed, which contained the names of members, their dates of birth, phone numbers, and addresses. In some cases, health notes were also obtained, which included the names of members’ physicians, brief descriptions of health conditions, along with details of medications that had been...

Read More
New York State Psychiatric Institute Data Breach Reported
Aug31

New York State Psychiatric Institute Data Breach Reported

A New York State Psychiatric Institute data breach that occurred between April 28 and May 4, 2016 has recently been announced. On June 16, 2016, New York State Psychiatric Institute, which is owned and operated by the New York State Office of Mental Health, became aware that unauthorized individuals had gained access to parts of the Institute’s computer systems. The protected health information of research participants was potentially...

Read More
Appalachian Regional Healthcare Security Breach Announced
Aug31

Appalachian Regional Healthcare Security Breach Announced

Hospitals in Kentucky and West Virginia have been forced to work without key computer systems as a result of an Appalachian Regional Healthcare security breach. A virus was discovered on Saturday that has caused a number of technical complications which Appalachian Regional Healthcare is attempting to resolve. Upon discovery of the virus, computer systems were shut down to prevent the spread of the virus and the Emergency Operations...

Read More
Mega Dropbox Data Breach Uncovered: 68 Million Passwords Stolen
Aug30

Mega Dropbox Data Breach Uncovered: 68 Million Passwords Stolen

A Dropbox data breach from 2012 has just been uncovered. A dataset including usernames (email addresses) and encrypted passwords has recently been provided to a number of breach notification sites, including LeakedSource, HaveIBeenPwned, and Hacked-DB. The data have also been listed for sale on the hacking marketplace, TheRealDeal. According to the listing, there are 68,679,804 login credentials in the dataset. Dropbox is now emailing...

Read More
Bon Secours Health System Announces 655,000 PHI Incident
Aug12

Bon Secours Health System Announces 655,000 PHI Incident

This week, Maryland-based Bon Secours Health System has announced that the protected health information of some of its patients has been accessible over the Internet for a period of almost two months. The security incident ranks as one of the biggest potential data breaches of 2016, involving the records of more than 655,000 patients. The incident was caused by the actions of one of its business associates: R-C Healthcare. R-C...

Read More