25% off all training courses Offer ends May 29, 2026
View HIPAA Courses
Learner Login Learner Support
Learner Login Learner Support
25% off all training courses
View HIPAA Courses
Offer ends May 29, 2026

The HIPAA Journal is the leading provider of HIPAA training, news, regulatory updates, and independent compliance advice.

City of Philadelphia Says PHI Potentially Compromised in May 2023 Email Breach

Posted By on Oct 25, 2023

The City of Philadelphia is investigating a breach of its email environment. Suspicious activity was detected in its email environment on May 24, 2023; however, according to a recent announcement, unauthorized activity continued for a further two months after the breach was first identified. The forensic investigation confirmed there was continued unauthorized access to email accounts until July 28, 2023.

Almost a month after the breach was contained, city officials confirmed that some of the compromised email accounts contained personal and protected health information. While the investigation is ongoing and a manual and programmatic review of the email accounts has not yet concluded, affected individuals are known to have had a combination of the following information exposed: names, addresses, dates of birth, other demographic and contact information, Social Security numbers, medical information such as diagnoses and treatment information, and limited financial information, such as claims information.

City officials said they will issue notifications to the affected individuals when the email account reviews have been completed. At this stage, it is unclear how many individuals have been affected and no explanation has been given as to why it took two months to contain the incident and almost 5 months from initial discovery to disclose the breach.

ALPHV Ransomware Group Claims Responsibility for Morrison Community Hospital Cyberattack

Morrison Community Hospital (MCH) in Illinois has announced it experienced a network security incident on September 24, 2023, and confirmed there has been unauthorized access to its network. A third-party cybersecurity firm has been engaged to assist with securing its network and help with the investigation to determine the extent of the unauthorized activity. The breach appears to only involve Explanation of Benefits statements.

Get The FREE
HIPAA Compliance Checklist

Immediate Delivery of Checklist Link To Your Email Address

Please Enter Correct Email Address

Your Privacy Respected

HIPAA Journal Privacy Policy

According to an October 19, 2023, notice on its website, “MCH has no reason to believe that any individual’s information has been misused as a result of this event,”  and said it is providing written notice to the affected individuals and has reviewed and enhanced its technical safeguards to prevent similar incidents in the future. On November 23, 2023, the breach was reported to the HHS’ Office for Civil Rights as affecting 122,488 individuals.

MCH did not disclose details about the nature of the attack; however, the ALPHV ransomware group has claimed responsibility and has added MCH to its data leak site. Samples of the stolen data were uploaded to the group’s data leak site on October 19, 2023, and the group threatened to leak the stolen data if the hospital did not comply with its demands. The group then proceeded to leak 8.6 TB of original VMWare VM images. 5 VMs with data and 1 VM with SQL.

Data Extortion Group Steals Data from Beverley Hills Plastic Surgery Practice

The Beverly Hills, CA-based plastic surgeon, Jaime S. Schwartz, M.D., appears to have fallen victim to a cyberattack. The Hunters International ransomware and data extortion group has added the plastic surgeon to its data leak site along with samples of photographs of four named patients.

The threat group claims to have exfiltrated 1.1 terabytes of data – 248,245 files – and said it is preparing to bulk email patients. There is currently no mention of a cyberattack or data breach on the plastic surgeon’s website and a breach has yet to appear on the websites of the California Attorney General and the HHS’ Office for Civil Rights.

The Federal Bureau of Investigation (FBI) recently issued a security alert warning that plastic surgery offices were being targeted by ransomware and data extortion groups. The first phase of attacks involves data theft, the stolen data is enhanced using open source information, and the final phase involves threats to leak data and attempted extortion of plastic surgeons and patients.

Author: Steve Alder is the editor-in-chief of The HIPAA Journal. Steve is responsible for editorial policy regarding the topics covered in The HIPAA Journal. He is a specialist on healthcare industry legal and regulatory affairs, and has 10 years of experience writing about HIPAA and other related legal topics. Steve has developed a deep understanding of regulatory issues surrounding the use of information technology in the healthcare industry and has written hundreds of articles on HIPAA-related topics. Steve shapes the editorial policy of The HIPAA Journal, ensuring its comprehensive coverage of critical topics. Steve Alder is considered an authority in the healthcare industry on HIPAA. The HIPAA Journal has evolved into the leading independent authority on HIPAA under Steve’s editorial leadership. Steve manages a team of writers and is responsible for the factual and legal accuracy of all content published on The HIPAA Journal. Steve holds a Bachelor’s of Science degree from the University of Liverpool. You can connect with Steve via LinkedIn or email via stevealder(at)hipaajournal.com

x

Prevent HIPAA Email Violations

Avoid the common misunderstandings and implementation errors relating to HIPAA email.

Learn more