Resources

The protected health information of up to 2 million individuals has potentially been compromised in a Shields Health Care Group cyberattack. Massachusetts-based Shields Health Care Group provides ambulatory surgical center management and medical imaging services throughout New England. On March 28, 2022, suspicious activity was detected within its network. Immediate action was taken to secure its network and prevent further unauthorized access, and third-party forensics specialists were engaged to assist with the investigation and determine the nature and scope of the security breach.

Official government funds from the city of Portland were lost to hackers after an email security breach resulted in fraudulent charges. The city is now trying to track down the criminals and cites the incident as a demonstration of the “growing threat of cyberattacks.”

The U.S. Department of Justice and the FBI announced that they had seized three domains after an international investigation that found these domains selling stolen personal information and providing access to conduct distributed denial-of-service attack on victim networks.

Ransomware attacks on healthcare organizations increased by 94% year over year, according to the 2022 State of Ransomware Report from cybersecurity firm Sophos. The report is based on a global survey of 5,600 IT professionals and included interviews with 381 healthcare IT professionals from 31 countries. This year’s report focused on the rapidly evolving relationship between ransomware and cyber insurance in healthcare.

SAG-AFTRA is telling members who participate in the SAG-Producers Pension Plan and the AFTRA Retirement Fund that they might be receiving a letter from Horizon Actuarial Services alerting them to a data breach and the possible theft of some of their personal information, including their Social Security numbers and birthdates.

Allwell Behavioral Health Services in Zanesville, OH, has announced that a computer system used to store quality assurance information related to the treatment of patients has been accessed by an unauthorized individual. The unauthorized access was detected on March 5, 2022, with the subsequent forensic investigation determining the system was breached on March 2, 2022.

Martin University is the victim of a recent ransomware attack. The university says it learned of suspicious activity in January and immediately hired security experts and a computer forensic investigator to analyze the system and determine if personal information was compromised.

If one was to look into the Federal Court’s Public Access to Court Electronic Records (PACER) one would see that more than 130 separate lawsuits have been filed against the U.S. Government’s Office of Personnel Management (OPM), all of which are associated with the 2014 and 2015 data breaches that affected millions.

BJC HealthCare notified patients about a data breach that may have compromised the protected health information of some patients at its affiliated hospitals and service organizations.

A joint investigation by the Office of the Privacy Commissioner of Canada and independent studies from Quebec, British Columbia, and Calgary were made public on Tuesday, concluding a nationwide investigation that first began in June of 2020.