A small roundup of incidents from the past 24 hours, including some dark web disclosures
Uintah Basin Healthcare notifies patients of data breach discovered in November
Uintah Basin Healthcare (“UBH”) in Utah became aware of unusual activity in their network on November 7, 2022. They are first notifying patients who received care at UBH between March 2012 and November 2022 and whose information may have been accessed or acquired.
The following personal and protected health information varied between individuals but may have been involved in the incident: name, date of birth, address, Social Security number, health insurance information, and certain clinical details including diagnosis/conditions, medications, test results, and procedure information.
Their full press notification can be found on their website.
Oyate Health Center notifies pharmacy patients of accidental disclosure
On March 8, Oyate Health Center in South Dakota discovered that some office supplies they had donated the previous day to a local non-profit contained a report of patients who used the center’s pharmacy during August 31, 2021 – September 8, 2021. The recipient realized the error and contacted them promptly. Information in the report included patients’ name, chart number, date of the pharmacy visit, and a diagnosis code related to the prescription the patient was refilling.
ASAS Health notifies 25,527 about cybersecurity incident
ASAS Health has notified 25,527 people of a cybersecurity incident on January 26, 2023. According to a copy of the notification provided by their external counsel to the Maine Attorney General’s Office, the Texas-based medical group has been unable to definitively determine whether and what information was actually accessed or subsequently compromised, but the types of information potentially include:
Name • Date of birth • Address • Phone number • Email address • Driver’s license number • SSN • Diagnosis • Disability Code • Medicare ID number • Health Plan Carrier Information • Financial information
BianLian Reveals Identity of More Victims, Still Masks Others
BianLian has been proving itself to be a serious threat to the healthcare sector in terms of the number of its attacks. This week, BianLian named Synergy Hematology Oncology Medical Associates in California on their leak site, claiming to have almost 200 GB of data from them. This medical group doesn’t seem to have a website and DataBreaches has not seen any press releases or anything by them about any breach.
Although BianLian claims to have leaked the data from both of the above entities, neither download was working as of this morning.
BianLian has also named other medical entities from other countries. They have not yet named all of the U.S. medical entities on their site, including Murfreesboro Medical Clinic in Tennessee or the one DataBreaches suspects is North Shore Medical Labs. BianLian claims to have 60 GB of data from them. DataBreaches has emailed NSML to ask whether they were attacked because there is no notice on their site even though BianLian added the obfuscated listing on April 18. No reply was immediately available.
BianLian also hasn’t publicly named Earlens Corporation, although one of the listings appears to relate to that firm. They claim to have 2 TB of data from that victim.
AlphV (BlackCat) Starts Leaking Essen Medical Associates
AlphV appears to have started leaking data from Essen Medical Associates on its leak site. Originally added to the site on April 6, the bad actors posted an update this week that says, ‘We gave you time and went to a meeting. Our patience has run out.” They claim to have 2.6 TB of data.
Sadly, as soon as we hit “send” on this post, we’ll probably find yet more breaches in the healthcare sector.