Tag Archive for: filed

Class action suit filed against LVHN over ransomware hack


A Philadelphia law firm has filed a class action suit against Lehigh Valley Health Network alleging the hospital has prioritized money over patient privacy after photos of cancer patients were posted on the internet in a ransomware hack.

The suit filed by Saltz Mongeluzzi & Bendesky focuses on photos that were published by hackers with the ransomware collective BlackCat over the last couple of weeks of cancer patients who received treatment through the network. The suit does not name a financial amount being sought for damages, instead requesting that the amount be determined by trial or the court.

The hackers acquired the photos through a ransomware attack on a physician’s practice owned by LVHN. The attack occurred in February and caused a leak of 132 gigabytes of patient data and photos. LVHN leaders have stated they refuse to pay the ransom, a tactic often touted by law enforcement and some cybersecurity experts, but in response, the hackers posted some of the photos online and have threatened to release more sensitive information if their demands are not met.

The suit filing states not only was the leak of these photos regrettable but that LVHN engaged in the “knowing, reckless, and willful, decision to let the hackers post the nude images” of Doe and others to the internet. And it accuses LVHN of “publicly patting itself on the back for standing up to the hackers” but “consciously and intentionally ignoring the real victims.”

Source…

5 Lawsuits Filed in Ransomware Breach Affecting 3.3 Million


Fraud Management & Cybercrime
,
Healthcare
,
HIPAA/HITECH

Proposed Class Actions Against Regal Medical Group Allege Negligence, Other Claims

5 Lawsuits Filed in Ransomware Breach Affecting 3.3 Million
Regal Medical Group in California is facing at least five proposed class action lawsuits following a ransomware incident involving data exfiltration that affected more than 3.3 million individuals.

At least five proposed class action lawsuits have been filed in recent days in the wake of a California medical group’s Feb. 1 report of a ransomware attack last December that affected more than 3.3 million individuals.

See Also: OnDemand | Navigating the Difficulties of Patching OT

The proposed lawsuits filed so far against Regal Medical Group, its affiliated Heritage Provider Network and other affiliated groups include four federal complaints filed since Feb. 13 in the U.S. District Court for the Central District of California, plus at least one complaint filed in a California state court on Feb. 9.

Regal, which has more than 3,000 doctors and touts itself as one of the largest physician-led healthcare networks in southern California, reported the hacking incident on Feb. 1 to the Department of Health and Human Services as affecting several of its affiliated medical groups.

The groups whose patients were affected by the incident include Lakeside Medical Organization and Affiliated Doctors of Orange County and Greater Covina Medical Group. The groups also are affiliates of Heritage Provider Network, a managed care plan (see:…

Source…

Cyber-attack results in more than $800K stolen from Houston business, lawsuit filed


A lawsuit has been filed after online hackers used fake business emails to steal more than $800,000 from a Houston company. 

According to the U.S. Attorney’s Office in the Southern District of Texas, authorities seized a total of $834,157 held in a Houston bank account. 

RELATED: Home camera security flaw may have allowed hackers to watch for years

Online hackers reportedly controlled the account despite it looking like a legitimate company. In reality, officials said the unidentified hackers got access to an employee’s computer and accessed their company’s computer networks including email servers as well as accounts. 

Through these phishing attacks, they were able to create fake email addresses but identified employees responsible for financial obligations and posed as vendors who were owed money. 

That’s how, according to the U.S. Attorney’s Office, the employees were “tricked” into wiring funds to an account, that the hackers controlled. 

SUGGESTED: Artificial Intelligence making job scams more dangerous

This type of attack is described by investigators as a Business Email Compromise (BEC) scheme, which targets businesses involved in wire transfer payments. 

“The fraud is carried out by compromising and/or ‘spoofing’ legitimate business email accounts through social engineering or computer intrusion techniques,” the U.S. Attorney’s Office said. “It causes employees of the victim company (or other individuals involved in legitimate business transactions with them) to transfer funds to accounts the scammers control.”

MORE CRIME AND PUBLIC SAFETY

The Secret Service conducted the investigation but is being handled by the U.S. Attorney’s Office. 

Officials also shared some helpful tips to avoid being a victim of a BEC scheme which include: 

  • Independently obtain mortgage payoff statements and confirm with verified and trusted sources.
  • Independently verify the authenticity of information included in correspondence and statements.
  • Enable Multi-Factor Authentication (MFA) on all email accounts.
  • Routinely change…

Source…

ROSEN, GLOBAL INVESTOR COUNSEL, Encourages International Business Machines Corporation to Secure Counsel Before Important Deadline in Securities Class Action Filed by the Firm – IBM


New York, New York–(Newsfile Corp. – January 28, 2023) – WHY: Rosen Law Firm, a global investor rights law firm, reminds purchasers of the securities of International Business Machines Corporation IBM between January 18, 2018 and October 16, 2018, both dates inclusive (the “Class Period”) of the important March 14, 2023 lead plaintiff deadline.

SO WHAT: If you invested in IBM securities during the Class Period you may be entitled to compensation without payment of any out of pocket fees or costs through a contingency fee arrangement.

WHAT TO DO NEXT: To join the IBM class action, go to https://rosenlegal.com/submit-form/?case_id=5104 or call Phillip Kim, Esq. toll-free at 866-767-3653 or email [email protected] or [email protected] for information on the class action. A class action lawsuit has already been filed. If you wish to serve as lead plaintiff, you must move the Court no later than March 14, 2023. A lead plaintiff is a representative party acting on behalf of other class members in directing the litigation.

WHY ROSEN LAW: We encourage investors to select qualified counsel with a track record of success in leadership roles. Often, firms issuing notices do not have comparable experience, resources or any meaningful peer recognition. Many of these firms do not actually handle securities class actions, but are merely middlemen that refer clients or partner with law firms that actually litigate the cases. Be wise in selecting counsel. The Rosen Law Firm represents investors throughout the globe, concentrating its practice in securities class actions and shareholder derivative litigation. Rosen Law Firm has achieved the largest ever securities class action settlement against a Chinese Company. Rosen Law Firm was Ranked No. 1 by ISS Securities Class Action Services for number of securities class action settlements in 2017. The firm has been ranked in the top 4 each year since 2013 and has recovered hundreds of millions of dollars for investors. In 2019 alone the firm secured over $438 million for investors. In 2020, founding partner Laurence Rosen was named by law360 as a Titan of Plaintiffs’ Bar. Many of the firm’s attorneys have been recognized by Lawdragon and Super…

Source…