Cybersecurity Updates
- Jefferson Health of Philadelphia, PA notified an unknown number of patients that their PHI was exposed after ransomware attack.
- Hawaii Independent Physicians Association of Honolulu notified 18,770 patients that their PHI was exposed after email phishing attack.
- Multiplan Insurance of New York City, NY notified 214,956 patients that their PHI was exposed after email phishing attack.
- PeopleGIS, headquartered in Woburn, Massachusetts, notified 100 US cities, who are customers, that their residents’ info may have been exposed after cybersecurity incident.
- Cloudstar, headquartered in Jacksonville, FL, notified a number of customers in the mortgage, title insurance, real estate, legal, finance and local government sectors, that customer/resident info was exposed after ransomware attack.
- The City of Geneva in Ohio notified an unknown number of residents that their info may have been exposed after a cyber incident.
- University of North Carolina Chapel Hill School of Medicine and The University of North Carolina Hospitals are notifying an unknown number of patients that their PHI may have been exposed after email phishing attack.
- The University of Vermont Medical Center admitted that recent ransomware attack cost the system $50 million.
- Lake County Health of Illinois notified 24,421 patients that their PHI was exposed after 2 data breaches.
- Cardinal Contracting, with offices of Michigan, Indiana & Kentucky, notified 4,519 people that their PHI was exposed after email phishing attack.
- NYC Health & Hospitals notified over 43,000 patients that their PHI was exposed after cyberattack.
- Advocate Aurora Health of Wisconsin and Illinois notified 68,707 patients that their PHI was exposed after ransomware attack.
- Intermountain Health of Utah notified 28,628 patients that their PHI was exposed after ransomware attack.
- Sierra Nevada Family Care Physicians of Grass Valley, CA notified an unknown number of patients that their PHI was exposed after paper medical records were found in a car by local police.
- Humana Insurance notified an unknown number of patients that their PHI may have been exposed after a data breach of a 3rd party app.
- Doctors Hospital of Augusta, Georgia is being investigated over violating HIPAA rules requiring healthcare facilities to respond to request from patients for their PHI.
- Talbert House, a behavioral health facility in Cincinnati, OH, notified an unknown number of patients that their PHI was exposed after ransomware attack.
- Scripps Health of San Diego, CA announced that it has notified families of deceased patients that their relatives’ PHI was stolen by a former employee.
- Matthew Lombardo was arrested and is accused of stealing the PHI of deceased patients in order file fraudulent COVID-19 unemployment benefits
- University of Pittsburgh Medical Center agreed to pay $2.65 million to settle a lawsuit regarding a past breach of patients’ PHI.
- The Campbell Conroy & O’Neil Law Firm of Boston, Massachusetts notified an unknown number of clients that their info was exposed after ransomware attack.
- Amanda Lowry of Sherman, Texas was sentenced to 30 months in federal prison for stealing PHI and using it for fraudulent monetary gain.