Cybersecurity News

CISA Releases Healthcare Cybersecurity Vulnerability Mitigation Guide

by

The Cybersecurity and Infrastructure Security Agency (CISA) issued a cybersecurity vulnerability mitigation guide for the healthcare sector, stressing the importance of remediating known...

BlackSuit Ransomware Is Credible Threat to Healthcare Cybersecurity, HC3 Says

by

HC3 issued an analyst note regarding BlackSuit ransomware, a relatively new group that appears to be similar to the Royal ransomware family and its notorious predecessor, Conti ransomware. HC3 warned...

FBI, CISA Urge Immediate Action to Mitigate Rhysida Ransomware Risks

by

The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) released a joint...

NY Proposes Tightened Cybersecurity Regulations For Hospitals

by

New York Governor Kathy Hochul proposed a set of sweeping cybersecurity regulations that would apply to hospitals across the state, along with $500 million in funding to help healthcare facilities...

NY AG Secures $450K From US Radiology Over Data Security Failures

by

New York Attorney General Letitia James announced a $450,000 settlement with US Radiology Specialists over alleged health data security failures that resulted in a ransomware attack. The Attorney...

Senators Launch Bipartisan Healthcare Cybersecurity Working Group

by

US Senators Mark Warner (D-VA), Bill Cassidy (R-LA), John Cornyn (R-TX), and Maggie Hassan (D-NH) launched a bipartisan Senate healthcare cybersecurity working group. The group will focus on proposing...

HITRUST Responds to RFI on Cybersecurity Regulation Harmonization

by

HITRUST issued a response to the White House’s request for information (RFI) on the harmonization of cybersecurity regulations, suggesting that regulation alone is not a fix to the ongoing cyber...

40 Countries Pledge Not to Pay Ransoms at International Counter Ransomware Summit

by

The International Counter Ransomware Initiative (CRI) held its third summit in Washington, DC, with representatives from 50 countries joining together to build upon counter-ransomware projects and...

HC3 Urges Healthcare Sector to Update SolarWinds Following Vulnerability Disclosure

by

The Health Sector Cybersecurity Coordination Center (HC3) urged the sector to prioritize monitoring and upgrading SolarWinds systems following a series of cybersecurity vulnerability...

CISA, HHS Collaborate on Healthcare Cybersecurity Toolkit

by

HHS and the Cybersecurity and Infrastructure Security Agency (CISA) teamed up to release a healthcare cybersecurity toolkit consisting of key resources for managing and mitigating cyber risk in the...

HC3 Sheds Light On QR Code-Based Phishing as Threat to Healthcare Cybersecurity

by

The Health Sector Cybersecurity Coordination Center’s (HC3) latest white paper examined the risks of “quishing,” or QR code-based phishing attacks. The growing popularity of quick...

NY AG Reaches $350K Settlement With Home Healthcare Company Over Data Breach

by

New York Attorney General Letitia James announced a $350,000 settlement with Personal Touch Holding Corporation, a Long Island-based home healthcare company, to resolve allegations stemming from a data...

Cyberattack On NY Hospitals Forces Ambulance Diversions

by

Westchester Medical Center Health Network (WMCHealth) had to temporarily divert ambulances and shut down IT systems in response to a cyberattack, AP News first reported. According to the health...

HC3 Details ServiceNow Cybersecurity Vulnerability, Potential Impacts on Healthcare

by

A cybersecurity vulnerability in ServiceNow, a cloud computing platform, may allow unauthenticated users to extract data from records, a cybersecurity researcher discovered in mid-October. The Health...

FBI Warns Public About Phishing Attacks Against Plastic Surgery Offices, Patients

by

The Federal Bureau of Investigation (FBI) issued a public service announcement to alert the public about cybercriminals who have been targeting plastic surgery offices, surgeons, and their patients...

NoEscape Ransomware Emerges, Targeting Healthcare

by

The Health Sector Cybersecurity Coordination Center (HC3) issued an analyst note regarding NoEscape ransomware, a new threat to healthcare and other industries. Although just two healthcare victims...

Security Budget Growth Plateaus in Healthcare

by

Security budgets across all sectors experienced a 6 percent average security budget increase this year, compared to a 17 percent increase in the last budget cycle, a new report from IANS Research and...

Advanced Email Attacks Skyrocket in Healthcare

by

Advanced email attacks remain a top threat to organizations around the world, including those in the healthcare sector, Abnormal Security observed in its latest blog post. Abnormal saw a 167 percent...

HC3 Details North Korean, Chinese Cyber Threats to Healthcare Sector

by

The US healthcare sector has long faced cyber threats from all directions, from insider threats to foreign state-sponsored adversaries. In its latest threat brief, the HHS Health Sector Cybersecurity...

DHS Tackles Cyber Incident Reporting Inconsistencies With Report to Congress

by

The Department of Homeland Security (DHS) issued recommendations to Congress about how the federal government could improve critical infrastructure cyber incident reporting in a new report. Notable...