Lake Sumter Community College
July 21, 2023
•[ leak, sqlinjection, healthcare ]
The Lake Sumter Community College confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability against the National Student Clearinghouse.
Hankins & Sohn Plastic Surgery Associates
July 17, 2023
•[ hack, leak, healthcare ]
An unnamed group or individual claims responsibility for a a cyber attack to the plastic surgery practice Hankins & Sohn Plastic Surgery Associates and starts to leak data.
Helix
July 16, 2023
•[ ransomware, malware, healthcare ]
Customers of the Russian medical laboratory Helix are unable to receive their test results for several days due to an attempted ransomware attack that crippled the company's systems over the weekend.
Highland Health Systems
July 15, 2023
•[ ransomware, leak, malware ]
The ransomware group ALPHV (AKA BlackCat) adds Highland Health Systems in Alabama to their leak site but remove the data few days after claiming the attack had violated their prohibition against attacking non-profits.
Fairfax Oral & Maxillofacial Surgery (FOMS)
July 14, 2023
•[ leak, healthcare ]
Fairfax Oral & Maxillofacial Surgery (FOMS) files a notice of data breach after a cyber incident compromised patients' protected health information.
Kansas Medical Center
July 11, 2023
•[ ransomware, leak, malware ]
The 8Base ransomware gang claims to have attacked Kansas Medical Center and threaten to publish the data as a leak on July 15.
Panorama Eyecare
July 11, 2023
•[ ransomware, leak, healthcare ]
Panorama Eyecare is added to LockBit's leak site with a claim that 798 GB of data has been exfiltrated from four of the firm's clients: Eye Center of Northern Colorado, Denver Eye Surgeons, Cheyenne Eye Clinic & Surgery Center; and 2020 Vision Center.
UofL Health
July 11, 2023
•[ hack, malware, healthcare ]
UofL Health, an academic health system, confirms that it had been targeted by a cyber attack exploiting the MOVEit CVE-2023-34362 vulnerability, after being listed on Clop's dark web leak site.
ConsensioHealth
July 3, 2023
•[ ransomware, malware, healthcare ]
ConsensioHealth files a notice of data breach after discovering that portions of its computer network were encrypted as a result of a cyberattack.
North Mississippi Health Services
July 3, 2023
•[ social, phishing, healthcare ]
North Mississippi Health Services reveals that they discovered unauthorized access through an employee's email account after a phishing email was unintentionally opened.
ClearMedi Health
July 3, 2023
•[ ransomware, malware, healthcare ]
The ransomware group 8Base lists ClearMedi Health on their leak site.
Luigi Vanvitelli University Hospital
July 1, 2023
•[ ransomware, malware, healthcare ]
The Luigi Vanvitelli University Hospital is hit with a ransomware attack.
Barts Health NHS Trust
June 30, 2023
•[ ransomware, malware, healthcare ]
Barts Health NHS Trust confirms it's investigating a ransomware incident by the BlackCat/ALPHV ransomware gang.
ARx Patient Solutions
June 30, 2023
•[ hack, phishing, healthcare ]
ARx Patient Solutions files a notice of data breach after discovering that an employee's M365 email account was accessed by an unauthorized party.
Atherfield Medical & Skin Cancer Clinic
June 29, 2023
•[ ransomware, malware, healthcare ]
A relatively new ransomware group, Cyclops, claims to have attacked Atherfield Medical & Skin Cancer Clinic in Australia:
Delaware Health Net
June 29, 2023
•[ leak, healthcare ]
The Henrietta Johnson Medical Center postes notice that some patient data was involved in a breach at Delaware Health Network (DHN), a healthcare-controlled network provider and electronic health records management provider that provides services to Henrietta Johnson Medical Center (HJMC) and other entities.
University of Utah
June 29, 2023
•[ hack, sqlinjection, healthcare ]
The University of Utah confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability.
Advanced Medical Management
June 29, 2023
•[ hack, misconfiguration, healthcare ]
Advanced Medical Management files a notice of data breach after discovering that portions of the company's IT network that were designed and maintained by third-party vendors were accessible to an unauthorized party.
CareSource
June 27, 2023
•[ leak, misconfiguration, healthcare ]
CareSource notifies of a data breach involving the company's use of the MOVEit file transfer application.
Kansas Joint & Spine Specialists
June 27, 2023
•[ ransomware, malware, healthcare ]
The ALPHV AKA BlackCat ransomware gang claims to have acquired 467 GB of data from Kansas Joint & Spine Specialists.
