Health Data

A busy morning for those tracking ransomware in the healthcare sector

It is turning out to be a somewhat busy morning here because three new incidents in the healthcare sector reportedly involved ransomware or ransom attempts. DataBreaches was already aware that Medical Associates of the Lehigh Valley notified HHS of a breach impacting 75,268 patients, but their notification letter reveals that this was a ransomware...

It’s like a veritable fire sale on Indonesians’ personal data

Indonesia’s private data protection bill cleared another hurdle and could be voted into law this week.  As Bloomberg reports: Data operators could face up to five years in jail and a maximum fine of 5 billion rupiah ($337,000) for leaking or misusing private information, according to Indonesia’s new data privacy bill set to be...

Unpatched and Outdated Medical Devices Provide Cyber Attack Opportunities

FBI Private Industry Notification PIN 20220912-001 TLP: WHITE Summary The FBI has identified an increasing number of vulnerabilities posed by unpatched medical devices that run on outdated software and devices that lack adequate security features. Cyber threat actors exploiting medical device vulnerabilities adversely impact healthcare facilities’ operational functions, patient safety, data confidentiality, and data...

LockBit updates leak site with post about Sud-Francilien hospital

After weeks of information and misinformation leaking out, and after some outstanding reporting by Valéry Rieß-Marchive on LeMagIT, LockBit 3.0 has publicly confirmed that they are responsible for the attack on South Francilien Hospital Center (CHSF). Consistent with the usual rhetoric we see from threat actors in such circumstances, LockBit tries to put responsibility...

What’s the impact of ransomware attacks on healthcare entities? Did you ask the people who really know?

Expect some buzz next week about a new report with significant findings about the impact of cyberattacks on patient care and mortality. The study was funded by Proofpoint and conducted independently by Ponemon Institute. The survey addresses important questions about the impact of various types of cyberattacks on patient safety and care. While DataBreaches...

HEALTHCARE: Still Ransomed – RedSense Fact Sheet

Seen on RedSense.com: Since early 2022, leading security industry experts have made broad estimations that ‘ransomware is on the decline’, but did they properly contextualize their data and findings? Given destabilization from the Russia-Ukraine conflict and tightening U.S. and EU law enforcement activities, ‘ransomware is on the decline’ proponents underestimate their adversaries’ motivations, resiliency,...

Settlements in Data Breach Litigation

Approval Notice Quebec Superior Court File No. 500-06-001015-193 CALGARY, AB, Sept. 8, 2022 /CNW/ – Detailed information and updates are available on the Settlement Website at the following address: www.stockxsettlement.ca. A Canada-wide Settlement has been reached in a class action relating to the StockX Data Breach that occurred on May 14, 2019, when an unknown third-party was able to gain unauthorized...