Healthcare Information Security

EHR Ransomware

Utilizing Strong Cyber Hygiene for Ransomware Preparation

May 25, 2017 - The WannaCry ransomware attack was a wakeup call for healthcare organizations across the globe, especially with the UK’s National Health Service being severely impacted from the attack. This is further proof why strong cyber hygiene is necessary for entities to properly prepare for a potential ransomware incident, according to ICIT Co-founder and Senior Fellow James Scott. The ransomware...


More Articles

Utilizing Strong Cyber Hygiene for Ransomware Preparation

by Elizabeth Snell

The WannaCry ransomware attack was a wakeup call for healthcare organizations across the globe, especially with the UK’s National Health Service being severely impacted from the attack. This is further proof why strong cyber hygiene is...

Texas Hospital Email Hack Exposes PHI of over 8K Patients

by Kate Monica

On February 21, 2017, an unauthorized individual accessed an employee email account containing PHI at Hill Country Memorial Hospital in Fredericksburg, Texas. Hill Country stated the email hack appears to be the result of intentional criminal...

HHS Reiterates OCR Ransomware Guidance after Recent Attack

by Elizabeth Snell

The WannaCry ransomware attack should serve as a strong reminder to healthcare organizations to maintain necessary data security measures, including proper employee training. Adhering to the OCR ransomware guidance will also help covered entities...

Medical Devices Reportedly Infected in Ransomware Attack

by Elizabeth Snell

The recent WannaCry ransomware attack that infiltrated more than 150 countries and forced some European healthcare organizations to suspend certain services reportedly infected certain medical devices as well. HITRUST explained in an email update...

HHS Urges Caution in Wake of WannaCry Ransomware Attack

by Elizabeth Snell

UPDATE: HHS released an additional update on May 15 with new details regarding the ransomware attack. Last week, multiple countries around the world reported falling victim to the WannaCry ransomware attack. Numerous hospitals and healthcare...

PHI Security of 20K Possibly Affected from RI Laptop Theft

by Kate Monica

On February 25, 2017, Lifespan Corporation suffered a possible healthcare data breach in which an employee’s laptop was stolen. The theft occurred when an individual broke into an employee’s car and stole several items, including...

50% of Industry Incidents from Healthcare Ransomware Attacks

by Elizabeth Snell

Half of the reported healthcare data security incidents from October 2015 to September 2016 stemmed from healthcare ransomware attacks, according to a recent NTT Security report. The NTT Security 2017 Global Threat Intelligence Report found that...

Stolen, Unencrypted Drive Causes Data Security Concern for 15K

by Kate Monica

Western Health Screening (WHS) recently issued a letter notifying individuals of a possible data security breach in which a WHS-owned vehicle containing an unencrypted jump drive was stolen. The jump drive contained the personal information of...

NY Computer Virus Raises Healthcare Data Security Concerns

by Kate Monica

Erie County Medical Center (ECMC) has been battling a computer virus that was discovered on its computer system early Sunday morning, causing concern over the organization’s healthcare data security. The hospital has voluntarily shut down...

55K Potentially Affected by Virus Encrypting Pediatric Servers

by Kate Monica

On February 6, 2017, ABCD Pediatrics discovered a virus had gained access to the healthcare organization’s servers and encrypted patient data. The Texas-based pediatric facility immediately contacted IT personnel to take all servers offline...

Potential Ransomware Attack Encrypts Patient Data in KY

by Elizabeth Snell

Kentucky-based Estill County Chiropractic (ECC) recently announced on its website that it had experienced a potential ransomware attack, where an unauthorized user installed malicious software that encrypted patient files. ECC said that it immediately...

Urology Austin Ransomware Attack Possibly Affects 279K

by Elizabeth Snell

Urology Austin recently announced on its website that it experienced a ransomware attack on January 22, 2017, which potentially exposed patient data that was stored on the compromised server. The OCR data breach reporting tool states that 279,663...

Ransomware Attack Mitigation in Updated ONC SAFER Guide

by Elizabeth Snell

Best practices for ransomware attack mitigation and prevention, along with general contingency planning, were recently discussed in updated SAFER Guides from the ONC. First published in January 2014, the SAFER Guides “provide an easy-to-use...

Metropolitan Urology Ransomware Attack Affects 18K Patients

by Elizabeth Snell

Wisconsin-based Metropolitan Urology Group (MUG) recently notified patients that it had experienced a ransomware attack on November 28, 206. MUG explained in a statement on its website that it became aware of the incident on January 10, 2017....

VA University Health System Security Breach Impacts 2.7K

by Kate Monica

Virginia Commonwealth University (VCU) Health System recently discovered a data breach potentially impacted over 2,700 patients, according to an announcement in the Richmond Times-Dispatch. On January 10, 2017, VCU Health System became aware...

How AI Can Help Fight Healthcare Ransomware Threats

by Elizabeth Snell

Healthcare is facing more ransomware threats every day, and is a prime target for such attacks. However, the Institute for Critical Infrastructure Technology (ICIT) explained in a recent paper that artificial intelligence could greatly aid organizations...

79K Patients Affected by Emory Healthcare Data Breach

by Kate Monica

Nearly 80,000 patients were potentially impacted by a recent data breach at Georgia-based Emory Healthcare’s Orthopaedics & Spine Center and Brain Health Center (EHC) at Emory Clinic. On January 3, 2017, EHC became aware of an incident...

Md. Introduces Ransomware Bill with Criminal, Civil Penalties

by Elizabeth Snell

A recent ransomware bill introduced into the Maryland General Assembly calls for steeper penalties for individuals who utilize the malicious software for such attacks. Maryland Senator Sen. Susan Lee sponsored the bill, HB 340, which “creates...

Delaware Health Data Breach Potentially Impacts 19K

by Kate Monica

At Highmark Blue Cross Blue Shield in Delaware, two subcontractors suffered a breach leaving 16 self-insured customers and 19,000 Highmark members vulnerable to a potential attack. The incident came to light January 13, 2017 after the Delaware...

Healthcare Ransomware Attacks Fuel Protection Market Growth

by Elizabeth Snell

As healthcare continues to digitize medical records and increase its use of ePHI, it is also making it a larger target for ransomware attacks, according to recent research. The healthcare industry is also facing more ransomware attacks than any...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks