Healthcare Information Security

Health IT Security and HIPAA News

Improving Medical Device Security Beyond Patching, Traditional Tools

by

Medical device security was thrust into the spotlight in 2018, as the Food and Drug Administration continued to bolster its cybersecurity program. In fact, an August MedCrypt report found that since the FDA released its cybersecurity...

Valley Hope Association Email Hack Breaches Patient Data

by

Kansas-based Valley Hope Association recently began notifying patients that their data was potentially breached during an email hack. VHA is a drug and alcohol addiction treatment organization with 16 facilities in seven states. Officials...

Trojan Malware Tops Ransomware as Biggest Hacking Threat to Healthcare

by

Trojan malware upended ransomware as the greatest hacking threat to the healthcare sector in 2018, according to a new report from Malwarebytes Labs. Specifically, Emotet and Trickbot hacking trojans were the most common malware strains,...

Feds Issue Emergency Directive on DNS Infrastructure Hijacking Attacks

by

The Department of Homeland Security Cybersecurity and Infrastructure Security Agency issued a rare emergency directive to all federal agencies to secure its DNS infrastructure, in the wake of a mass DNS infrastructure hijacking...

Healthcare Cyberattacks Cost $1.4 Million on Average in Recovery

by

The average healthcare organization spent $1.4 million to recover from a cyberattack, according to a recent report from Radware. The number is slightly lower than other industries, which spent $1.67 million. The Radware 2018-2019 Global...

North Carolina Reintroduces Strict Data Breach Notification Law

by

North Carolina Attorney General Josh Stein and Rep. Jason Saine reintroduced data privacy legislation that would give organizations just 30 days to report a breach. For healthcare providers in the state, the law would effectively cut in...

Zero-Day Virus Forces EHR Downtime at 21 Health Science North Hospitals

by

The computer system of Sudbury, Ontario-based Health Sciences North was infected by a zero-day virus, driving officials to shut down its EHR to contain the infection, according to local news outlet CBC Radio-Canada. Staff at the Sudbury...

Could HIPAA be Repealed, Replaced with a Unified Federal Privacy Law?

by

The Information Technology and Innovation Fund is recommending a repeal of privacy regulations across the U.S., including HIPAA, to replace the patchwork of federal laws with a unified approach. Among its recommendations, ITIF is calling...

Months-Long Phishing Attack on Rehab Center Breaches Patient Data

by

Memphis-based Sacred Heart Rehabilitation Center recently began notifying patients that their personal data was potentially breached due to a phishing attack. Officials discovered the hacker gained access to an employee email account...

DoD Health Agency Security Flaws Put Patient Data at Risk, OIG Finds

by

The Department of Defense Health Agency (DHA) failed to consistently implement security measures to protect the systems that stored, processed, and transmitted electronic health record and patient information, according to a DoD...

OCR Hiring Deputy Director for Health Information Privacy

by

The Department of Health and Human Services’ Office for Civil Rights is looking to hire a Deputy Director of Health Information Privacy, according to a job listing posted on January 14. According to the post on USAJOBS, the senior...

4-Month Breach of BenefitMall Impacts 112,000 Plan Members

by

Centerstone Insurance and Financial Services, operating as BenefitMall, is notifying 111,589 consumers that their personal data was potentially breached during a months-long phishing attack. On October 11, officials discovered a hacker...

Cryptomining Top Malware Threat, Multi-Purpose Malware Surges

by

For the past 13 months, cryptomining topped the list of leading malware threats, according to Check Point’s latest Global Threat Index for December 2018. In fact, the top four malware threats were cryptomining variants, despite the...

Notorious Ryuk Ransomware Adds Trojans to Cyberattack Method

by

Ryuk ransomware – which pummeled the healthcare sector in the fall – has added Emotet and Trickbot trojans to its attack method, to gain access into a network, according to new research from FireEye and CrowdStrike. The...

Judge Gives Boston Children’s Hospital Hacker 10-Year Jail Sentence

by

The hacker behind the notorious 2014 cyberattack on Boston Children’s hospital and another facility has been sentenced to 10 years in prison. In August 2018, Martin Gottesfeld was found guilty of launching the attack on behalf of...

Hackers Launching DNS Infrastructure Hijacking Campaign, Feds Warn

by

Hackers are targeting Domain Name System (DNS) infrastructure with a global hijacking campaign across all sectors, according to a new alert from the Department of Homeland Security National Cybersecurity and Communications Integration...

Massive SingHealth Data Breach Caused by Lack of Basic Security

by

Singapore’s July 2018 personal data breach of 1.5 million SingHealth patients, including Prime Minister Lee Hsien Loong, was caused by bad system management, a lack of employee training, and other major flaws, according to the...

Phishing Attack Hits Kent County Community Mental Health

by

Kent County Community Mental Health Authority is notifying 2,284 patients that their data was potentially breached after several phishing attacks. According to officials, three employees fell victim to targeted phishing campaigns on...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...