Healthcare Information Security

Health IT Security and HIPAA News

New Phishing Tool Bypasses Two-Factor Authentication

by

A security researcher recently released a hacking tool that takes phishing attacks to a whole new level: It both automates phishing attacks and breaks through two-factor authentication functions with ease. Modlishka was created by Piotr...

Third-Party Vendor Phishing Attack Breaches 31,000 Patient Records

by

Managed Health Services of Indiana Health Plan is notifying about 31,000 patients of a potential breach to their personal data, caused by a phishing attack on a business associate. According to officials, several employees of LCP...

Protenus, RADAR Partner to Mitigate Healthcare Cybersecurity Risks

by

Protenus, a health compliance analytics platform announced it’s partnering with RADAR, an incident response management software vendor on a new tool that leverages automation, predictive analytics, and artificial intelligence to...

Feds Start Cybersecurity Campaign on Foreign Risks to Private Sector

by

The National Counterintelligence and Security Center launched its Know Your Risk, Raise Your Shield campaign on Monday, to drive awareness around the increasing risk of foreign cyberattacks on the private sector. The cybersecurity...

Where Does AI Automation Fit Into Health Data Security?

by

The 2017 Health Care Industry Cybersecurity Task Force report painted a damning picture of cybersecurity in healthcare, including the discovery that three out of four hospitals operate without a designated security leader. Those providers...

Ransomware Corrupts 24,000 Patient Records of California Specialist

by

A ransomware attack on the Podiatric Offices of Bobby Yee corrupted and possibly altered the medical records of 24,000 patients, according to a recent notification. Typically, ransomware merely encrypts the data on the infected computers,...

Blue Cross Blue Shield of Michigan Reports Second Breach in December

by

Blue Cross Blue Shield of Michigan policyholders were notified of a second potential breach of their personal and health data in December, after a ransomware attack on one of the insurer’s service providers. Wolverine Solutions fell...

Hackers Breach Data of 4,300 Missouri Patients for 3 Months

by

Missouri-based Choice Rehabilitation Center is notifying 4,309 patients that their data was breached in a months-long hack on a corporate email account. On November 7, Choice discovered that one of its email accounts was hacked....

NIST Telehealth Remote Monitoring Guidance Plan Gets AMIA Support

by

The National Institute of Standards and Technology recently announced it would fund a project to develop guidance around the security and privacy risks associated with remote patient monitoring. NIST said its team will perform a risk...

Hospitals Spend 64% More on Advertising After a Data Breach

by

Hospitals spend 64 percent more annually on advertising after a breach over the following two years, according to a recent report from the American Journal of Managed Care. Researchers Sung J. Choi and M. Eric Johnson examined nonfederal...

Feds Warn Chinese Hackers Launching Targeted Cyberattacks

by

The Department of Homeland Security Cybersecurity and Infrastructure and Security Agency recently alerted all sectors that Chinese hackers have been actively exploiting relationships between IT service providers and their customers. The...

Blue Cross Blue Shield of Michigan Breach Impacts 15,000 Customers

by

Blue Cross Blue Shield of Michigan is notifying 15,000 customers that their data was potentially breached due to a stolen laptop. According to the notice, the stolen laptop belonged to a business associate of one of its subsidiaries. An...

HHS Releases Best Practice Healthcare Cybersecurity Guidelines

by

The Department of Health and Human Services issued cybersecurity guidelines for the healthcare sector on Friday, focused on voluntary cybersecurity practices to reduce security risks and bolster cybersecurity programs across the...

Judge Approves Flowers Hospital Settlement over 2014 Data Breach

by

A federal judge has approved a settlement between Flowers Hospital and the 1,200 patients whose data was stolen from the hospital in 2014, according to Alabama news station WTVY. The Alabama-based provider will pay the victims up to...

User Authentication Most Common Cyber Risk for Hospitals, Health Systems

by

User authentication deficiencies, endpoint leakage, and excessive user permissions are the three most common cyber risks facing health systems and hospitals, according to new data from Clearwater CyberIntelligence Institute. The...

Avery Center to Pay Patient $853K for Impermissible Data Disclosure

by

The Bridgeport Superior Court ruled the Avery Center of Obstetrics and Gynecology must pay a former Connecticut resident $853,000, for releasing the woman’s medical records to her past boyfriend without her consent. The lawsuit,...

San Diego School District Phishing Hack Includes Health Data

by

San Diego Unified School District fell victim to a phishing attack, which breached the personal data, including health information, of more than 500,000 students and staff. The hacker gained access to staff credentials using a targeted...

NIST Risk Management Framework Update Addresses Privacy, Security

by

The National Institute of Standards and Technology released the final version of its Risk Management Framework (RMF), addressing both privacy and security concerns around IT risk management. All federal agencies are required to follow the...

Medtronic Ventilator Recalled by FDA for Software Update

by

The Food and Drug Administration released an alert about a global voluntary corrective field action on Medtronic’s Puritan Bennett 980 ventilators. The action was announced this week and began on September 19. The FDA classified the...

LifeBridge Health Sued over Data Breach of 530,000 Patients

by

A class-action lawsuit was filed against Baltimore-based LifeBridge Health on Thursday over its 2016 health data breach, disclosed to the public in May 2018. According to the release, law firm Murphy, Falcon and Murphy filed the statewide...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...