CareCloud says one EHR environment hit in New Jersey
pAn SEC filing says an unauthorized third party disrupted access for about eight hours and the company is still assessing whether patient information was accessed or exfiltratedppCareCloud said an unauthorized third party briefly disrupted one of its six electronic health record environments on March 16 restoring access that evening as investigators assess possible patient data exposureppIn a March 27 SEC filing the Somerset New Jerseybased company said an unauthorized third party temporarily accessed part of its CareCloud Health division on March 16 partially disrupting functionality and data access in one of six electronic health record environments for about eight hours before full restoration that evening The company said it notified its cyber insurer engaged outside cyberresponse specialists and reported the matter to law enforcementppCareCloud said it believes the incident was contained to that single CareCloud Health environment and that its other platforms divisions systems and data environments were not affected The company said the affected environment stores patient information and that it is still assessing whether data was accessed or exfiltrated including the categories and volume involved It also said the actor no longer has access and that remediation is underwaypp
Chip in once
If this reporting helped you a onetime tip helps cover hosting tools and future investigations
pp
Support us monthly
A small monthly pledge keeps independent coverage and our reader tools online for everyone
ppThere is no public evidence linking CareClouds incident to Vanderbilt University Medical Centers outage the same day Vanderbilt told Beckers the disruption was not tied to a cyberattack or ransomware event and public accounts varied with reports pointing to Epic or to software upgrades suggesting a separate technical issue rather than any known connection to CareCloudppCareCloud provides cloudbased software revenuecycle management and related services to healthcare providers nationwide In its 2024 annual report the company said it served about 40000 providers across roughly 2600 independent medical practices and hospitals in all 50 statesppThe incident fits a broader pattern of cyberattacks affecting healthcare vendors beyond hospitals themselves Recent incidents at medical technology companies including Stryker and Masimo underscore how attacks on software service and equipment providers can create operational risk across the healthcare sectorppCareCloud said the incident had not materially affected operations as of the filing date but said it deemed the matter material because of the sensitivity of potentially affected patient information and the possibility of remediation notification legal regulatory and reputational consequences More disclosures or notifications could follow if the review confirms data access or exfiltrationppA collaborative project to bring you the latest cyberattacks impacting the availability of services and goods in the United Statespp
Local reporting later found the July 2025 attack knocked out email and parking kiosks and ended in a 500000 insurancebacked settlement
pp
Officials said the city isolated the threat while Leon County cut a network connection as a precaution and warned of possible outages tied to shared applications
pp
Officials say the threat was detected early and contained before it could become a more serious incident
pp
City says missing records inaccessible systems and wiped devices found after an administrative transition prompted requests for state and federal help
pp
District officials said an outside actor accessed some systems prompting a shutdown that canceled classes child care and afterschool programs Monday
pp
How we use documented disruption and DDCIT to focus on US incidents that actually break services
pp
How cyber breach statements reassure the public without saying much at all
pp
This is an opinion column from DysruptionHub publisher Joseph Topping about attribution and local news coverage of cyberattacks It departs from our usual incident reports and analysis
Golf Manor Ohio
pp
How a Reddit theory CTI echo chamber and a vanished article show why cyber incidents need verification
pp
A year of lost records stalled home sales and hard lessons in local government cybersecurity
ppppGreat Check your inbox and click the linkppSorry something went wrong Please try againpp
Chevin said it took affected FleetWave environments offline in the US and UK while it investigates the incident
pp
The company said it isolated affected services after a cybersecurity event disrupting alarm communications for dealers and monitored accounts nationwide
pp
The archive provider said an intruder encrypted some systems cutting off historical newspaper access for partner libraries and subscribers
pp
The toy maker said it took some systems offline after finding unauthorized network access and warned interim workarounds could slow orders and shipments for several weeks
pp
Local reporting later found the July 2025 attack knocked out email and parking kiosks and ended in a 500000 insurancebacked settlement
pp
Officials said the city isolated the threat while Leon County cut a network connection as a precaution and warned of possible outages tied to shared applications
pp
Officials say the threat was detected early and contained before it could become a more serious incident
pp
District officials said an outside actor accessed some systems prompting a shutdown that canceled classes child care and afterschool programs Monday
p
Chip in once
If this reporting helped you a onetime tip helps cover hosting tools and future investigations
pp
Support us monthly
A small monthly pledge keeps independent coverage and our reader tools online for everyone
ppThere is no public evidence linking CareClouds incident to Vanderbilt University Medical Centers outage the same day Vanderbilt told Beckers the disruption was not tied to a cyberattack or ransomware event and public accounts varied with reports pointing to Epic or to software upgrades suggesting a separate technical issue rather than any known connection to CareCloudppCareCloud provides cloudbased software revenuecycle management and related services to healthcare providers nationwide In its 2024 annual report the company said it served about 40000 providers across roughly 2600 independent medical practices and hospitals in all 50 statesppThe incident fits a broader pattern of cyberattacks affecting healthcare vendors beyond hospitals themselves Recent incidents at medical technology companies including Stryker and Masimo underscore how attacks on software service and equipment providers can create operational risk across the healthcare sectorppCareCloud said the incident had not materially affected operations as of the filing date but said it deemed the matter material because of the sensitivity of potentially affected patient information and the possibility of remediation notification legal regulatory and reputational consequences More disclosures or notifications could follow if the review confirms data access or exfiltrationppA collaborative project to bring you the latest cyberattacks impacting the availability of services and goods in the United Statespp
Local reporting later found the July 2025 attack knocked out email and parking kiosks and ended in a 500000 insurancebacked settlement
pp
Officials said the city isolated the threat while Leon County cut a network connection as a precaution and warned of possible outages tied to shared applications
pp
Officials say the threat was detected early and contained before it could become a more serious incident
pp
City says missing records inaccessible systems and wiped devices found after an administrative transition prompted requests for state and federal help
pp
District officials said an outside actor accessed some systems prompting a shutdown that canceled classes child care and afterschool programs Monday
pp
How we use documented disruption and DDCIT to focus on US incidents that actually break services
pp
How cyber breach statements reassure the public without saying much at all
pp
This is an opinion column from DysruptionHub publisher Joseph Topping about attribution and local news coverage of cyberattacks It departs from our usual incident reports and analysis
Golf Manor Ohio
pp
How a Reddit theory CTI echo chamber and a vanished article show why cyber incidents need verification
pp
A year of lost records stalled home sales and hard lessons in local government cybersecurity
ppppGreat Check your inbox and click the linkppSorry something went wrong Please try againpp
Chevin said it took affected FleetWave environments offline in the US and UK while it investigates the incident
pp
The company said it isolated affected services after a cybersecurity event disrupting alarm communications for dealers and monitored accounts nationwide
pp
The archive provider said an intruder encrypted some systems cutting off historical newspaper access for partner libraries and subscribers
pp
The toy maker said it took some systems offline after finding unauthorized network access and warned interim workarounds could slow orders and shipments for several weeks
pp
Local reporting later found the July 2025 attack knocked out email and parking kiosks and ended in a 500000 insurancebacked settlement
pp
Officials said the city isolated the threat while Leon County cut a network connection as a precaution and warned of possible outages tied to shared applications
pp
Officials say the threat was detected early and contained before it could become a more serious incident
pp
District officials said an outside actor accessed some systems prompting a shutdown that canceled classes child care and afterschool programs Monday
p
