fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Utah Medical Center Hit by Data Breach Affecting 582k Patients

Utah Medical Center Hit by Data Breach Affecting 582k Patients

Utah Imaging Associates (UIA), a Utah-based radiology center, has announced a data breach affecting 582,170 people after their personal information was exposed.

According to the data breach notification sent to affected individuals, the security incident was discovered on September 4, 2021, and was remediated on the same day.

However, the initial network infiltration happened on August 29, 2021, allowing the threat actors to explore UIA’s internal systems and potentially steal data for about a week.

Also Read: 5 Most Frequently Asked Questions About Ransomware

The subsequent forensic investigation carried out with the help of a specialized third-party cybersecurity firm revealed that the unauthorized network intruder had access to the following personal information of patients:

  • First and last name
  • Mailing address
  • Date of birth
  • Social Security number
  • Health insurance policy number
  • Medical information (medical treatment, diagnosis, and prescription information)

The type of information varies by individual, so not all of the above elements concern each recipient of the data breach notice.

UIA also points out that they have received no reports of this data having been leaked online, two months after the incident.

This, however, doesn’t guarantee that any stolen data isn’t privately shared among hackers on the dark web, as is commonly done with data breaches.

People who used UIA’s services in the past should take advantage of the offered 12 months of credit monitoring services through IDX and remain vigilant against social engineering attacks.

If you have noticed signs of fraud, unusual bank account charges, or suspicious emails and calls, you are advised to report it immediately by calling (833) 525-2720.

BleepingComputer has contacted UIA to learn more about the nature of the data breach, and we will update this post as soon as we have more details.

Also Read: Personal Data Protection Act Singapore: Is Your Business Compliant?

Medical centers are easy pickings

Hackers tend to target medical centers like UIA as they handle sensitive data considered valuable in the cybercrime underground.

Some notable recent incidents targeting healthcare include:

  • A breach on the Weill Cornell Medicine in New York that took place last week
  • A security incident that disrupted operations in the Southern Ohio Medical Center last week
  • A damaging cyberattack against the Johnson Memorial Health network last month
  • A large-scale attack against the health care system of the Canadian province of Newfoundland and Labrador
  • A data breach affecting roughly 137,000 patients of the Urology Center of Colorado, two weeks ago

As healthcare visits require patients to provide a lot of personal information, the responsibility of securing their sensitive data can be difficult for healthcare providers.

This is especially true for smaller practices that may operate under a limited budget without a dedicated IT staff.

All businesses, including medical practices, should safeguard their data by not exposing internal services to the Internet, such as remote desktop, following good backup schedules, and conducting phishing training for their employees.

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us