New Threat Research: Uncovering Adversarial LDAP Tradecraft

Read Threat Research


Around 34,000 Medical Marijuana Patients’ Personal Data was Exposed in a Breach

An electronic medical record system using Sunniva Inc. was breached somewhere between December 4th 2018 and January 7th 2019, exposing personal information of nearly 34,000 patients. Although no financial, credit card, or Social Security numbers were included, information like diagnostic results, health-care numbers and personal contact information was compromised. Sunniva, which operates seven clinics in Canada, is seeking aid from privacy protection and law enforcement entities in their investigation. However, a class action lawsuit is currently being proposed by Diamond and Diamond, and a hotline has been set up to help patients who have been affected. A spokesperson for the company released a statement which read, “We value our patients and understand the importance of protecting personal information and apologize to the patients whose personal information has been improperly accessed and for any frustration or inconvenience that this may cause.”

Analyst Notes

Any user believed to be affected by the breach is suggested to contact the hotline in order to be provided more information. Users should also join the class action lawsuit in order to be compensated for the inconvenience of the breach.