Month: February 2021

The last day for reporting healthcare data breaches involving less than 500 records that were identified in 2020 is on March 1, 2021. Until then, HIPAA-covered entities and business associates can submit their breach reports […]

Kroger made an announcement that it has encountered a data security incident, which exploited the SQL injection vulnerabilities found in its Accellion File Transfer Appliance (FTA). The Accellion FTA is an old appliance that was […]

The number of healthcare data breaches involving 500 or more records in January 2021 decreased by 48% month-over-month. There were 32 data breaches reported in January compared to December’s 62. Although this is below the […]

Wilmington Surgical Associates located in North Carolina is dealing with a class suit due to a Netwalker ransomware attack that resulted in a data breach last October 2020. In most ransomware attacks today, data files […]

Grand River Medical Group based in Dubuque, OH found out that an unauthorized person acquired access to an employee’s email account and might have seen or gathered the protected health information (PHI) of 34,000 patients. […]

A Campbell County Health (CCH) personnel had done an email error that led to the impermissible disclosure of the protected health information (PHI) of 900 people. The health system based in Gillette, WY found out […]

The court has given preliminary approval of a settlement proposal by 21st Century Oncology to take care of a November 2020 class-action lawsuit. The class-action lawsuit was submitted in District Court for the Middle District […]

The Conti ransomware gang has left a big set of healthcare information online that was presumably taken from Leon Medical Centers based in Florida and Nocona General Hospital based in Texas. Leon Medical Centers experienced […]

The National Cyber Investigative Joint Task Force (NCIJTF) published a ransomware fact sheet to increase awareness regarding the ransomware attack threats and offer information that could be used to avoid and offset attacks. An interagency […]

University of Pittsburgh Medical Center (UPMC) has reported that the protected health information (PHI) of over 36,000 patients was potentially accessed by unauthorized persons subsequent to a cyberattack on a company that provides UPMC with […]

Cybersecurity firm Imperva released a report that showed significant growth of attacks on healthcare sector web apps. Imperva Research Labs noted 51% more web app attacks for the period November 2020 to December 2020, the […]

Two personnel of the Department of Veteran Affairs’ (VA) information technology allegedly made false representations regarding the privacy and security risks of a huge data AI project involving the VA and a private firm that […]

Europol stated that the well known Emotet Botnet was taken down in association with a multinational law enforcement operation. Law enforcement agencies in the United States, Europe, and Canada controlled the Emotet infrastructure, which is […]

The contract of Philly Fighting COVID to distribute COVID-19 vaccines in Philadelphia city with the Philadelphia Department of Public Health was ended following accusations that the organization’s privacy policies potentially allowed the purchase of private […]