Tag Archive for: Notifies

Firm Notifies Patients of 55 Health Practices of MOVEit Hack

/in


Breach Notification
,
Cybercrime
,
Fraud Management & Cybercrime

Anesthesiology, Pain Management, Gastro Practices Affected Across Several States

Marianne Kolbasuk McGee (HealthInfoSec) •
October 4, 2023    

Firm Notifies Patients of 55 Health Practices of MOVEit Hack
Image: NorthStar Anesthesia, Arietis Health

Arietis Health, a revenue cycle management vendor is notifying patients of 55 healthcare practices across several states that their sensitive health and personal information has been potentially compromised in a hack of Progress Software’s MOVEit file transfer application.

See Also: How to Reduce Compliance and Risk Workload to Increase Cybersecurity Revenue for Managed Security Service Providers (MSSPs)

Fort Myers, Florida-based Arietis provides billing services to Irving, Texas-based NorthStar Anesthesia, which manages the affected medical practices, which specialize in anesthesia, pain management and related healthcare services.

Arietis in its breach notice said its uses MOVEit file transfer software in the billing services it provides to NorthStar.

Arietis says that it was notified by Progress Software on May 31 of a critical vulnerability affecting MOVEit and took immediate steps to patch its MOVEit server, as advised by Progress Software’s instructions.

But by then, Russian-speaking ransomware group Clop had already launched its mass attack campaign around May 27, when it exploited a zero-day vulnerability in MOVEit to steal data being stored on file transfer servers – a hack that has so far affected thousands of organizations worldwide.

On July 26, Arietis’…

Source…

Firm Notifies Patients of 55 Health Practices Hit by MOVEit Hack

/in


Breach Notification
,
Cybercrime
,
Fraud Management & Cybercrime

Anesthesiology, Pain Management, Gastro Practices Affected Across Several States

Marianne Kolbasuk McGee (HealthInfoSec) •
October 4, 2023    

Firm Notifies Patients of 55 Health Practices Hit by MOVEit Hack
Image: NorthStar Anesthesia, Arietis Health

Arietis Health, a revenue cycle management vendor is notifying patients of 55 healthcare practices across several states that their sensitive health and personal information has been potentially compromised in a hack of Progress Software’s MOVEit file transfer application.

See Also: Live Webinar Tomorrow | Cyber Resilience: Recovering from a Ransomware Attack

Fort Meyers, Florida-based Arietis provides billing services to Irving, Texas-based NorthStar Anesthesia, which manages the affected medical practices, which specialize in anesthesia, pain management and related healthcare services.

Arietis in its breach notice said its uses MOVEit file transfer software in the billing services it provides to NorthStar.

Arietis says that it was notified by Progress Software on May 31 of a critical vulnerability affecting MOVEit and took immediate steps to patch its MOVEit server, as advised by Progress Software’s instructions.

But by then, Russian-speaking ransomware group Clop had already launched its mass attack campaign around May 27, when it exploited a zero-day vulnerability in MOVEit to steal data being stored on file transfer servers – a hack that has so far affected thousands of organizations worldwide.

On July 26, Arietis’ investigation into the incident determined that…

Source…

The Franklin Mutual Insurance Group Notifies Victims of Recent Data Breach Following Ransomware Attack | Console and Associates, P.C.

/in


On July 13, 2023, The Franklin Mutual Insurance Group (“FMI”) filed a notice of data breach with the Attorney General of Vermont after discovering that an unauthorized party was able to gain access to FMI’s computer network. In this notice, FMI explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information. Upon completing its investigation, FMI began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.

If you received a data breach notification from the Franklin Mutual Insurance Group, it is essential you understand what is at risk and what you can do about it. As we’ve discussed in previous posts, to protect your privacy and prevent identity theft, companies have a legal obligation to keep your private information secure. Thus, when a company’s negligence causes or contributes to a data breach, victims may be able to hold the company financially liable through a data breach lawsuit. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft as well as discuss your legal options following the Franklin Mutual Insurance data breach.

What Caused the Franklin Mutual Insurance Breach?

The Franklin Mutual Insurance data breach was only recently announced, and more information is expected in the near future. However, FMI’s filing with the Attorney General of Vermont provides some important information on what led up to the breach. According to this source, FMI recently determined that an unauthorized actor was able to access the company’s computer system as a result of a ransomware attack. While FMI provides little background about what led up to the incident, it notes that the unauthorized access occurred on March 11, 2023.

In response, FMI terminated all unauthorized access, notified the FBI, and then launched an investigation into the incident. The FMI investigation confirmed that the unauthorized party accessed and downloaded consumers’ personal information that was stored on the company’s computer system.

After learning that sensitive consumer data was…

Source…

UConn Health notifies up to 326,000 patients of data breach – Becker’s Hospital Review

/in

UConn Health notifies up to 326,000 patients of data breach  Becker’s Hospital Review

Farmington-based University of Connecticut Health sent letters to up to 326000 patients notifying them of a recent data security incident.

“data breach” – read more