Data breaches or leaks involving health or medical data.
Bleeping Computer reports that hospitals are being warned about a social engineering trick used by hackers to gain access: The sector alert issued by the Health Sector Cybersecurity Coordination Center (HC3) this week says these tactics have allowed attackers to gain access to targeted organizations’ systems by enrolling their own multi-factor authentication (MFA) devices. In […]
Data Breach Today reports: A Midwest operator of nursing homes has filed for bankruptcy, citing the effects of a ransomware attack last fall and fallout from the recent Change Healthcare outage as factors that contributed to its financial woes. See Also: Take Inventory of Your Medical Device Security Risks SC Healthcare Holdings LLC, which operates as […]
Wasn’t it predictable that someone at The London Clinic might try to snoop on the Princess of Wales’ medical records during her hospitalization in January? Were they able to access the records or did they just try but not succeed? If they succeeded, how did The London Clinic’s access monitoring and controls fail? The Mirror, […]
Today, the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) issued a “Dear Colleague” letter addressing the cybersecurity incident impacting Change Healthcare, a unit of UnitedHealthcare Group (UHG), and many other health care entities. The cyberattack is disrupting health care and billing information operations nationwide and poses a direct threat to […]
The attack on United Healthcare’s Change Healthcare unit continues to cause major problems. Pharmacies are struggling to fill prescriptions, patients cannot get their medications, and payment processes for providers are impacted. The problems began February 21 after hackers, subsequently identified as the AlphV (BlackCat) group, gained access to UnitedHealth’s Change Healthcare unit. How they gained […]
Bloomberg Law reports: Pilfered snapshots of patients baring their bodies ahead of life-saving cancer operations and plastic surgeries are unexpectedly landing in the vast landscape of the public internet after cyberattacks, as hackers seek new ways to turn a profit. Campaigns to extort victims during ransomware attacks against health-care providers are evolving, according to lawsuits […]
Jeremy Fowler reports: Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to vpnMentor about a non-password protected database that contained nearly 1.3 million records, which included COVID-19 testing information and personally identifiable information such as the patient’s name, date of birth, and passport number. The publicly exposed database contained an estimated 1.3 million records that included 118,441 certificates, […]
In its The State of Ransomware in the U.S. report for 2023, Emsisoft opined that the only solution to the ransomware crisis is to completely ban ransomware payments. That recommendation has generated some discussion, and now Becker’s has also reached out to health system CISOs to get their reaction to the recommendation. The majority’s opinion […]
From the NYS Attorney General’s Office:
The 2024 Breach Barometer reports 171 million health data records breached in the U.S. in 2023.
And that’s just the ones they could find numbers for! Request your free copy of the full report at Protenus.com.