Collaborate Disseminate
With all the big attacks on third-party vendors, it’s not surprising that some entities are reporting two or more breaches in a short period of time. Imagine360, LLC, is a self-funded health plan for employers. On or around January 30, Imagine360… Continue reading Imagine360 discovers that two of its file-sharing platforms were hit within days of each other.
Joseph Menn reports: A satellite communications system serving the Russian military was knocked offline by a cyberattack late Wednesday and remained mostly down on Thursday, in an incident reminiscent of an attack on a similar system used by Ukraine at… Continue reading Cyberattack knocks out satellite communications for Russian military
Carly Page reports: Taiwan Semiconductor Manufacturing Company (TSMC), the world’s largest contract chipmaker, has confirmed it’s experienced a data breach after being listed as a victim by the LockBit ransomware gang. The Russia-linked LockBit r… Continue reading TSMC confirms data breach after LockBit cyberattack on third-party supplier
From the Privacy and Data Protection Commission of Singapore, there’s an update to a breach that was previously disclosed in October 2021: A financial penalty of $58,000 and $10,000 was imposed on Fullerton Healthcare and Agape CP Holdings respec… Continue reading Breach of the Protection Obligation by Fullerton Healthcare and Agape CP Holdings
Sean Lyngaas reports: At least 100,000 people could have had their data compromised by a hack of contractors at the Department of Health and Human Services, a department official said Thursday, making it the latest US government agency to be caught up … Continue reading At least 100,000 could have had data exposed after US health department was hit by global MOVEit cyberattack
The Henrietta Johnson Medical Center in Delaware has posted notice that some patient data was involved in a breach at Delaware Health Network (“DHN”). DHN is a healthcare-controlled network provider and electronic health records management provider th… Continue reading Henrietta Johnson Medical Center patients affected by breach at Delaware Health Network
HHS has announced another Security Rule enforcement action. This one involves iHealth Solutions (dba Advantum Health), a business associate. The incident involved an unsecured server where protected health information of patients was exfiltrated. The … Continue reading HHS Office for Civil Rights Settles HIPAA Investigation with iHealth Solutions Regarding Disclosure of Protected Health Information on an Unsecured Server for $75,000
Many student loan borrowers caught a huge break this week with government forgiveness of some student loan debt. But for 2.5 million student loan borrowers, the week also brought news of a breach of their contact information and Social Security numbers… Continue reading Edfinancial and OSLA student loan account registration info hacked in Nelnet breach; 2.5 million affected
Is “Bl00dy Ransomware Gang” a new ransomware group on the scene, a rebrand, or neither? In July, a new channel appeared on Telegram called the “Bl00dy Ransomware Gang.” In August, information about alleged victims started to a… Continue reading New York medical practices hit by “Bl00dy Ransomware Gang”
Rebecca Thomas reports: It could take more than a year for hospitals to recover patient record systems following the recent NHS cyberattack, The Independent has learned. Hospitals impacted are likely to need two weeks to recover for every day the situa… Continue reading NHS cyberattack causing ‘total chaos’ in hospitals could take a year to recover