...Orleans plus Willis-Knighton Health in northwest Louisiana (Healthcare Dive). If the District Court finds that Meta, and possibly other ad trackers such as those from Google, Twitter, or Bing were not inherently liable for personal health data violations that monetized PHI, then the health systems are 100% on the hook for the data breaches (or ‘wiretapping’ in a creative use of terminology). It also makes the potential paydays possibly less lucrative–in the eyes of this Editor, as Meta and Google have far deeper pockets than any ol’ health system. SC Media, Paubox The Meta Pixel backstory here CVS Health to... Continue Reading
Search Results for breaches
Healthcare cyberattack latest: NextGen EHR ransomwared by AlphV/BlackCat, back to normal – 93% of healthcare orgs had 1-5 ransomware incidents
...East Coast. Their next ransomware edition, BlackMatter, targeted agriculture during fall 2021. Healthcare IT News, The Record/Recorded Future News More severe attacks affecting 93% of healthcare organizations. While NextGen contained the attack quickly, both the Censinet/Ponemon Institute and Fortified Health Security’s 2023 Horizon Report tracked 2022 healthcare data breaches and concluded that while the number of incidents didn’t change much, their severity ramped up. More according to SC Media in these reports: Over a dozen of the biggest incidents in 2022 each impacted well over 1 million records Nearly half of the respondents experienced a ransomware attack in the last... Continue Reading
“Big Story” update: where Elizabeth Holmes will spend 11 years, Cerebral sues former CEO Robertson, Amwell buying Talkspace?
...CEO Kyle Robertson. Only a week or so ago, Robertson (through his attorneys) reportedly sent a letter to Cerebral management demanding access to documents detailing “possible breaches of fiduciary duty, mismanagement and other violations of law.” [TTA 18 Nov] Now Cerebral is suing Robertson for his default on a $49.8 million loan taken this past January to buy 1.06 million shares of common stock in the company. According to the filing in New York Supreme Court, he is personally liable for $25.4 million, plus interest and attorney’s fees. After his dismissal 18 May, he had six months to repay the... Continue Reading
Ousted Cerebral CEO may sue company, accuses management of scapegoating on Schedule 2 prescribing
Troubled telemental health provider Cerebral may face a lawsuit from former CEO Kyle Robertson. Ousted in May when the company’s prescriptions for ADHD patients started to be excluded from pharmacies such as Truepill, CVS, and Walmart for Schedule 2 (potential for abuse and misuse) medications such as Adderall, Ritalin, and Vyvanse [TTA 6 May], Robertson has written a letter to Cerebral demanding access to documents. The types of documents requested, according to (paywalled) Insider, include “possible breaches of fiduciary duty, mismanagement and other violations of law.” Usually, these are a setup to determine whether others on the company board and... Continue Reading
Meta Pixel ad tracker collects another 3 million data breaches at Advocate Aurora Health; Zuckerberg getting Senate scrutiny
The Pixel ad tracker continues to be a Big Problem for Meta and Facebook. Advocate Aurora Health, a large health system in Illinois and Wisconsin, this week informed 3 million patients of a potential data breach connected to the use of Meta Pixel. The Meta Pixel snippets of JavaScript code were used within their Epic MyChart and LiveWell websites and applications, as well as on some of their schedulers. As we have previously noted (below), ad trackers like the Meta Pixel are used to target website visitors and also to track ads placed on Facebook and Instagram. Developers routinely permit... Continue Reading
Weekend short takes: May telehealth claims up to 5.4%; three health plan breaches, one at its law firm–affecting over 400,000 patients; layoffs hit Calm, Truepill (updated)
...plan company, was breached through its law firm Warner Norcross & Judd (WNJ). The October 2021 breach at WNJ wasn’t reported to Priority Health until 6 June. The unauthorized party potentially accessed first and last names, pharmacy and claim information, drug names, and prescription dates from certain prescriptions filled in 2012. 120,000 members were affected. What the information was doing at the plan’s law firm was not disclosed. Priority Health is Michigan’s second-largest plan with over one million members. In other breaches, Texas-based Behavioral Health Group (BHG), had a data incident that affected 197,507 individuals. The unauthorized party had potentially... Continue Reading
Mid-week news roundup (updated 18 Aug): CVS eyeing Signify Health for in-home/VBC; Babylon Health mixed pic of revenue and losses up; Geisinger doubles telemed specialties; connected IoT devices expand cyber-insecurity (more); Owlet layoffs
...running Windows XT/95–and earlier (!) The average total cost of the largest data breaches is $13 million–the most common cost is in the $1-5 million range. 88% of these data breaches involved at least one IoT/MT device Risks are known, but action is lagging. 72% of health organizations report a high level of urgency in securing devices–yet 67% of organizations do not keep an inventory of IoT/IoMT devices that they scan 79% don’t consider their activities to be ‘mature’ Security investment doesn’t reflect the gravity of the risk–only 3.4% of IT budgets focus on IoT/MT device security. And in sad... Continue Reading
Week-end news roundup: Fold Health launches OS ‘stack’; admin task automator Olive cuts 450 workers; 38% of UK data breaches from cyber, internal attacks; hacking 80% of US healthcare breaches; does AI threaten cybersecurity?
...80% of all breaches. Fortified Health Security’s mid-year report on the state of healthcare cybersecurity, reviewing HHS Office for Civil Rights (OCR) data, noted that in first half 2022: Healthcare data breaches primarily originated at providers– 72%. The remainder were at business associates at 16% and health plans at 12%. The number of records affected was 138% higher than the first half of 2020 at over 19 million records Breaches were concentrated in relatively few organizations: Seven entities experienced breaches of more than 490,000 records each, in total 6.2 million records or 31% to date. OCR’s data breach portal recorded... Continue Reading
Midweek heat wave roundup: GE Healthcare’s new name, hospital-to-home health trending big, over 2 million patient records hacked
...heat wave that melts runways at RAF Brize Norton and Luton be without a couple of big data breaches to heat up things? Stolen: an iPad chock full of 75,000 Kaiser Permanente patients’ PHI from Kaiser’s Los Angeles Medical Center’s COVID-19 testing center. While the information on the iPad included first and last names, dates of birth, medical record numbers, and dates and location of service (but not SSN or financial information), Kaiser was able to remotely erase the data. At this point, there is no evidence of theft or misuse. NBC Los Angeles, Becker’s An even larger breach of... Continue Reading
Weekend news roundup: Teladoc adds to Primary360; Novartis, Medtronic support UK digital cardiac startups; Bluestream adds PrimaryOne Health; NoKo ransomware threatens healthcare; more Fed scrutiny on telehealth Rx, billed time may be coming
...and Infrastructure Security Agency (CISA), and the Department of the Treasury (Treasury) to release a joint Cybersecurity Advisory (CSA) on Thursday warning healthcare and public sector health organizations. It is state-sponsored North Korean malicious cyber activity. The CSA provides a sample of how it executes, what it targets, how it encrypts files, and how to respond. Hackermania, NoKo Style, is Running Wild with breaches piling up [TTA 7 July], and not only in healthcare. Healthcare Dive, Healthcare IT News And in Dog Bites Man News, a former US assistant district attorney for Massachusetts predicts that Federal entities such as the... Continue Reading
Most Recent Comments