Ellwood City Medical Center
June 4, 2019
•[ hack, healthcare ]
Ellwood City Medical Center officials investigate whether any patient records were compromised after a cyber attack.
People Inc.
May 30, 2019
•[ leak, healthcare ]
People Inc., a New York non-profit agency, reveals a data breach occurred on February 19, 2019 when two email accounts were compromised.
Cancer Treatment Centers of America
May 17, 2019
•[ phishing, healthcare ]
Cancer Treatment Centers of America sends notification letters to patients whose protected health information was in an employee email account compromised by a phishing attack.
Oregon Health Authority
May 13, 2019
•[ social, phishing, healthcare ]
Oregon Health Authority provides early notification to Oregon State Hospital patients of a phishing incident occurred on May 6 and targeting an email account containing OSG data.
American Medical Collection Agency
May 10, 2019
•[ leak, misconfiguration, healthcare ]
A data breach involving a medical collection agency affects more than 200,000 patients who had used the firm's online payment portal between September, 2018 and the beginning of March, 2019. The data is found on the dark web.
The Southeastern Council on Alcoholism and Drug Dependence, Inc. ("SCADD")
May 10, 2019
•[ ransomware, malware, healthcare ]
The Southeastern Council on Alcoholism and Drug Dependence, Inc. ("SCADD") provides notice of a ransomware attack affecting 25,148 patients.
Metro Presort
May 6, 2019
•[ ransomware, malware, healthcare ]
Metro Presort was attacked by the Ryuk ransomware gang. At the time, the company was serving 21 healthcare entities which may have been affected by the attack.
American Baptist Homes of the Midwest
May 6, 2019
•[ ransomware, malware, healthcare ]
American Baptist Homes of the Midwest notifies patients and residents of ransomware incident occurred on May 6, 2019.
SkyMed
April 29, 2019
•[ leak, ransomware, misconfiguration ]
A detailed list or 137,000 SkyMed members accounts is found, on March 27th, into an unsecured Elasticsearch database. The leak also shows evidence of ransomware inside the network.
Delta Dental of Illinois
April 24, 2019
•[ social, phishing, healthcare ]
Delta Dental discloses a security incident affecting an unspecified number of their insured members and dependents. An employee had fallen prey to a phishing attack between December 21 and December 28 last year.
Doctors' Management Services (DMS)
April 24, 2019
•[ ransomware, malware, healthcare ]
Doctors' Management Services (DMS) reveals to have been struck with GandCrab ransomware on Christmas Eve last year, possibly exposing the PII of its clients' patients.
EmCare Inc.
April 20, 2019
•[ hack, phishing, healthcare ]
EmCare Inc. discloses that an unauthorized party obtained access to a number of employees' email accounts that contained the personal information of as many as 60,000 individuals, 31,000 of which are patients.
Partners for Quality
April 19, 2019
•[ hack, phishing, healthcare ]
Partners for Quality notifies 3,673 clients after some employees' email accounts are compromised.
Centrelake Medical Group
April 16, 2019
•[ hack, malware, healthcare ]
Centrelake Medical Group notifies almost 198,000 patients after a virus investigation reveals earlier intrusion and suspicious activity.
Blue Cross of Idaho Health Service
April 12, 2019
•[ hack, misconfiguration, healthcare ]
Blue Cross of Idaho Health Service notifies that, on March 21, 2019, an unauthorized user accessed Blue Cross of Idaho's online provider portal and was able to access provider remittance documents, which contained PHI.
Questcare Medical Services
April 12, 2019
•[ hack, phishing, healthcare ]
Questcare Medical Services announces to have discovered a security incident. On February 13, an unauthorized third party obtained access to an employee's email account.
Riverplace Counseling Center
April 11, 2019
•[ ransomware, malware, healthcare ]
Riverplace Counseling Center notifies 11,639 patients after a security incident due to a ransomware occurred on January 20, 2019.
Rehabilitation Hospital of Northwest Ohio
April 10, 2019
•[ hack, phishing, healthcare ]
An undisclosed number of patients at the Rehabilitation Hospital of Northwest Ohio have their personal data compromised after "unauthorized access" to employee email accounts in October.
Weslaco Regional Rehabilitation Hospital
April 8, 2019
•[ hack, phishing, healthcare ]
Weslaco Regional Rehabilitation Hospital notifies patients their information may have been compromised, after some employees' email accounts were compromised in October 2018.
Baystate Medical Center
April 8, 2019
•[ social, phishing, healthcare ]
Baystate Medical Center warns that personal information belonging to about 12,000 patients was compromised following an email phishing attack occurred between Feb. 7 and March 7.
