Another 947K patient records found to be hacked in MOVEit breach
More than a year after other victims of the MOVEit hacking incident notified people, the the Centers for Medicare & Medicaid Services (CMS) and Wisconsin Physicians Service Insurance Corporation (WPS) are notifying people whose protected health information was acquired by the Clop gang: The MOVEit data breach may be long in the rear-view mirror, but […]
UK data watchdog to fine NHS vendor Advanced for security failures prior to LockBit ransomware attack
The 2022 ransomware attack on Advanced, a National Health Service (NHS) vendor, was devastating to patient care. Now the U.K.’s Information Commissioner’s Office has indicated it plans to impose a substantial fine on the vendor. TechCrunch reports: U.K. data protection authorities have issued a provisional fine of more than £6 million to NHS vendor Advanced […]
Impact: Over 6,000 operations and appointments delayed by London ransomware attack
More than 6,000 operations and appointments have been postponed at London hospitals affected by the Synnovis cyber attack, NHS England has confirmed. Digital Health reports that on 4 July 2024, NHSE published an update on the ransomware attack. The update indicated that 4,913 acute outpatient appointments and 1,391 elective procedures have been postponed at King’s […]
Microsoft and Google to offer support and low-cost cybersecurity services to rural hospitals
When a rural hospital suffers a cyberattack that may knock it offline or encrypt all of its systems and patient records, the human cost can be enormous. Sadly, it is not unusual for criminal groups to attack hospitals, believing that they will have no choice but to pay extortion demands. In a statement issued Monday […]
At least 15 Cencora/Lash Group clients affected by hacking incident; more than 542,000 patients already notified
In February, Cencora (formerly known as AmerisourceBergen/Lash Group) filed notice of a cybersecurity incident with the Securities and Exchange Commission: On February 21, 2024, Cencora, Inc. (the “Company”), learned that data from its information systems had been exfiltrated, some of which may contain personal information. Upon initial detection of the unauthorized activity, the Company immediately took containment […]
ARPA-H announces program to enhance and automate cybersecurity for health care facilities
The government is investing in helping to secure hospitals from ransomware attacks: Safeguarding protected health information is a top priority for the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR). OCR is sharing the following announcement of Advanced Research Projects Agency for Health (ARPA-H) on the launch of Universal PatchinG and Remediation […]
ZircoDATA hack exposes more than 60,000, including victims of family violence, sex assault
Another vendor hack compromises sensitive information An attack on a documents storage service has resulted in the leak of sensitive information of victims of family violence and sexual assault who had been treated at Monash Health, the public health service in Victoria. The attack also compromised the personal information of current and former students at […]
United Healthcare, Optum, and Change Healthcare Involved in Northeast Ohio Neighborhood Health Data Breach
Marco A. De Felice reports: Another significant data breach looms for United Healthcare (UHC), involving patient documents belonging to its Optum financial assistance program and its subsidiary Change Healthcare. In recent hours, the ransomware group Medusa has claimed on its website, within Tor networks, the cyberattack on the servers of Northeast Ohio Neighborhood Health (NEON), a company providing healthcare services headquartered in Cleveland, […]
Kaiser Permanente discloses breach that may have impacted 13.4 million patients
Healthcare giant Kaiser Permanente has joined the ranks of those who have disclosed that their websites may have improperly shared protected health information with others. The issue with tracking pixels was first highlighted in investigative reporting by The Markup last year. They have continued to report on the issues, including fines paid, litigation, and Federal […]