Former IT employee accessed data of over 1M US patients
A former IT employee accessed data of over 1 million US patients in a breach at Nuance, a contractor for Geisinger. Patient info was compromised, excluding financial data. The employee was arrested. Geisinger advised affected individuals to monitor their accounts. A law firm is investigating a potential lawsuit. Geisinger emphasized vigilance.
Read original article
A former IT employee of Nuance, a contracted IT services provider for Geisinger, a healthcare system in Pennsylvania, accessed data of over 1 million US patients in a data breach incident. The breach involved unauthorized access to patient information such as full names, phone numbers, dates of birth, addresses, medical record numbers, and more. The breach did not compromise sensitive financial data like credit card details or Social Security Numbers. The former employee was promptly blocked from accessing Geisinger's systems, leading to their arrest and charges. Geisinger advised potentially impacted individuals to review their statements for any suspicious activity and notify their health insurers if needed. A law firm has initiated an investigation into the incident, exploring the possibility of a class-action lawsuit against Geisinger. The motive behind the breach remains unclear, but Geisinger highlighted the importance of vigilance among affected individuals.
Related
Snowflake breach snowballs as more victims, perps, come forward
The Snowflake data breach expands to include Ticketek, Ticketmaster, and Advance Auto Parts. ShinyHunters claim involvement, Snowflake enforces security measures. CDK faces ransomware attack, Juniper and Apple vulnerabilities identified. Jetflicks operators convicted.
Rabbit data breach: all r1 responses ever given can be downloaded
A data breach at Rabbit Inc. exposed critical API keys for ElevenLabs, Azure, Yelp, and Google Maps, compromising personal information and enabling malicious actions. Rabbit Inc. has not addressed the issue, urging users to unlink Rabbithole connections.
ID verification service for TikTok, Uber, X exposed driver licenses
A cybersecurity researcher found AU10TIX's admin credentials exposed online, risking data breach for TikTok, Uber users. Concerns rise over ID verification services' vulnerability to cyberattacks, emphasizing the need for enhanced security measures.
Microsoft blamed for million-plus patient record theft at US hospital giant
A former Nuance Communications employee stole personal data from over a million Geisinger patients, prompting an investigation and arrest. Microsoft is cooperating with authorities amid concerns over data security practices.
200 people charged in $2.7B health care fraud crackdown
The Justice Department charged nearly 200 individuals in a $2.7 billion health care fraud crackdown. Cases involved scams targeting terminally ill patients, kickbacks for unnecessary treatments, and assets seized to prevent fleeing.
3 commentsRight now it feels like most systems have an okay security level and authorization model for the end users and admin people in the office, but then behind the scenes, on the server, almost any random dev or consultant can access the raw production DB and do what ever they want.
--/u/nomilk
Related
Snowflake breach snowballs as more victims, perps, come forward
The Snowflake data breach expands to include Ticketek, Ticketmaster, and Advance Auto Parts. ShinyHunters claim involvement, Snowflake enforces security measures. CDK faces ransomware attack, Juniper and Apple vulnerabilities identified. Jetflicks operators convicted.
Rabbit data breach: all r1 responses ever given can be downloaded
A data breach at Rabbit Inc. exposed critical API keys for ElevenLabs, Azure, Yelp, and Google Maps, compromising personal information and enabling malicious actions. Rabbit Inc. has not addressed the issue, urging users to unlink Rabbithole connections.
ID verification service for TikTok, Uber, X exposed driver licenses
A cybersecurity researcher found AU10TIX's admin credentials exposed online, risking data breach for TikTok, Uber users. Concerns rise over ID verification services' vulnerability to cyberattacks, emphasizing the need for enhanced security measures.
Microsoft blamed for million-plus patient record theft at US hospital giant
A former Nuance Communications employee stole personal data from over a million Geisinger patients, prompting an investigation and arrest. Microsoft is cooperating with authorities amid concerns over data security practices.
200 people charged in $2.7B health care fraud crackdown
The Justice Department charged nearly 200 individuals in a $2.7 billion health care fraud crackdown. Cases involved scams targeting terminally ill patients, kickbacks for unnecessary treatments, and assets seized to prevent fleeing.