Christus Health ransomware incident involved theft of sensitive patient and employee data

First, the good news (such as it is): a ransomware attack on Christus Health by Avos Locker has not impacted patient care. Now, the bad news: the threat actors acquired — and have already leaked — a lot of sensitive information on patients … Continue reading Christus Health ransomware incident involved theft of sensitive patient and employee data

Hacker and Ransomware Designer “Nosophoros” Charged for Use and Sale of Ransomware, and Profit Sharing Arrangements with Cybercriminals

A criminal complaint was unsealed today in federal court in Brooklyn, New York, charging Moises Luis Zagala Gonzalez (Zagala), also known as “Nosophoros,” “Aesculapius” and “Nebuchadnezzar,” a citizen of France and Venezuela who resides in Venezuela, w… Continue reading Hacker and Ransomware Designer “Nosophoros” Charged for Use and Sale of Ransomware, and Profit Sharing Arrangements with Cybercriminals

IN: Schneck Medical Center notifying patients about data security incident

Schneck Medical Center announced Friday that it was notifying “a limited number” of patients of a data security incident that resulted in the access and exfiltration of some files containing protected health information (PHI). They do not i… Continue reading IN: Schneck Medical Center notifying patients about data security incident

Mint gets data breach claims dismissed

Alyssa M. Sones of SheppardMullin writes about a data breach lawsuit with a somewhat different, albeit unsuccessful, approach. Sones explains: Fraser’s allegation that Mint had a role in helping the hacker gain control of his phone number sets this cas… Continue reading Mint gets data breach claims dismissed

Parker-Hannifin discloses breach affecting employee health plan data

On March 14, Parker-Hannifin discovered unauthorized access to to their IT systems that began three days earlier.  Their investigation determined some files on Parker’s IT systems had been accessed and possibly acquired by the attacker. The information… Continue reading Parker-Hannifin discloses breach affecting employee health plan data

Law Firm Cyber Breach May Impact 23K, Including Financial Institution Client’s Customers

Justin Henry reports: The cyberattack of Philadelphia midsize law firm Stevens & Lee has grown to include 23,066 people whose personal information was potentially compromised, including customers of the firm’s financial institution clients, accordi… Continue reading Law Firm Cyber Breach May Impact 23K, Including Financial Institution Client’s Customers

Refuah Health Center “recently discovered” a breach that was listed on the dark web in June, 2021?

On April 29, 2022, Refuah Health Center in New York issued a statement on their website that begins: The privacy and security of the personal and protected health information we maintain is of the utmost importance to Refuah Health Center. We recently … Continue reading Refuah Health Center “recently discovered” a breach that was listed on the dark web in June, 2021?

Quantum Imaging & Therapeutic Associates notification following 2021 data security incident

Quantum Imaging & Therapeutic Associates (QITA) is notifying patients of a data breach detected on October 7, 2021. WGAL reported on it after some recipients of the letter wondered if it was a scam. It’s not. QITA’s notice on their webs… Continue reading Quantum Imaging & Therapeutic Associates notification following 2021 data security incident

South Florida Health Care Clinic Owners, Doctor, Others Sentenced in Medical Billing Fraud Scheme

Miami, Florida – On May 10, a federal district judge in Miami sentenced the last of 10 defendants for her role in a health care fraud scheme involving three physical therapy clinics that recruited and paid kickbacks to beneficiaries of Blue Cross Blue … Continue reading South Florida Health Care Clinic Owners, Doctor, Others Sentenced in Medical Billing Fraud Scheme