Healthcare Information Security

Health IT Security and HIPAA News

New Phishing Tool Bypasses Two-Factor Authentication


A security researcher recently released a hacking tool that takes phishing attacks to a whole new level: It both automates phishing attacks and breaks through two-factor authentication functions with ease. Modlishka was created by Piotr...

Third-Party Vendor Phishing Attack Breaches 31,000 Patient Records


Managed Health Services of Indiana Health Plan is notifying about 31,000 patients of a potential breach to their personal data, caused by a phishing attack on a business associate. According to officials, several employees of LCP...

Protenus, RADAR Partner to Mitigate Healthcare Cybersecurity Risks


Protenus, a health compliance analytics platform announced it’s partnering with RADAR, an incident response management software vendor on a new tool that leverages automation, predictive analytics, and artificial intelligence to...

Feds Start Cybersecurity Campaign on Foreign Risks to Private Sector


The National Counterintelligence and Security Center launched its Know Your Risk, Raise Your Shield campaign on Monday, to drive awareness around the increasing risk of foreign cyberattacks on the private sector. The cybersecurity...

Where Does AI Automation Fit Into Health Data Security?


The 2017 Health Care Industry Cybersecurity Task Force report painted a damning picture of cybersecurity in healthcare, including the discovery that three out of four hospitals operate without a designated security leader. Those providers...

Ransomware Corrupts 24,000 Patient Records of California Specialist


A ransomware attack on the Podiatric Offices of Bobby Yee corrupted and possibly altered the medical records of 24,000 patients, according to a recent notification. Typically, ransomware merely encrypts the data on the infected computers,...

Blue Cross Blue Shield of Michigan Reports Second Breach in December


Blue Cross Blue Shield of Michigan policyholders were notified of a second potential breach of their personal and health data in December, after a ransomware attack on one of the insurer’s service providers. Wolverine Solutions fell...

Hackers Breach Data of 4,300 Missouri Patients for 3 Months


Missouri-based Choice Rehabilitation Center is notifying 4,309 patients that their data was breached in a months-long hack on a corporate email account. On November 7, Choice discovered that one of its email accounts was hacked....

NIST Telehealth Remote Monitoring Guidance Plan Gets AMIA Support


The National Institute of Standards and Technology recently announced it would fund a project to develop guidance around the security and privacy risks associated with remote patient monitoring. NIST said its team will perform a risk...

Hospitals Spend 64% More on Advertising After a Data Breach


Hospitals spend 64 percent more annually on advertising after a breach over the following two years, according to a recent report from the American Journal of Managed Care. Researchers Sung J. Choi and M. Eric Johnson examined nonfederal...

Feds Warn Chinese Hackers Launching Targeted Cyberattacks


The Department of Homeland Security Cybersecurity and Infrastructure and Security Agency recently alerted all sectors that Chinese hackers have been actively exploiting relationships between IT service providers and their customers. The...

Blue Cross Blue Shield of Michigan Breach Impacts 15,000 Customers


Blue Cross Blue Shield of Michigan is notifying 15,000 customers that their data was potentially breached due to a stolen laptop. According to the notice, the stolen laptop belonged to a business associate of one of its subsidiaries. An...

HHS Releases Best Practice Healthcare Cybersecurity Guidelines


The Department of Health and Human Services issued cybersecurity guidelines for the healthcare sector on Friday, focused on voluntary cybersecurity practices to reduce security risks and bolster cybersecurity programs across the...

Judge Approves Flowers Hospital Settlement over 2014 Data Breach


A federal judge has approved a settlement between Flowers Hospital and the 1,200 patients whose data was stolen from the hospital in 2014, according to Alabama news station WTVY. The Alabama-based provider will pay the victims up to...

User Authentication Most Common Cyber Risk for Hospitals, Health Systems


User authentication deficiencies, endpoint leakage, and excessive user permissions are the three most common cyber risks facing health systems and hospitals, according to new data from Clearwater CyberIntelligence Institute. The...

Avery Center to Pay Patient $853K for Impermissible Data Disclosure


The Bridgeport Superior Court ruled the Avery Center of Obstetrics and Gynecology must pay a former Connecticut resident $853,000, for releasing the woman’s medical records to her past boyfriend without her consent. The lawsuit,...

San Diego School District Phishing Hack Includes Health Data


San Diego Unified School District fell victim to a phishing attack, which breached the personal data, including health information, of more than 500,000 students and staff. The hacker gained access to staff credentials using a targeted...

NIST Risk Management Framework Update Addresses Privacy, Security


The National Institute of Standards and Technology released the final version of its Risk Management Framework (RMF), addressing both privacy and security concerns around IT risk management. All federal agencies are required to follow the...

Medtronic Ventilator Recalled by FDA for Software Update


The Food and Drug Administration released an alert about a global voluntary corrective field action on Medtronic’s Puritan Bennett 980 ventilators. The action was announced this week and began on September 19. The FDA classified the...

LifeBridge Health Sued over Data Breach of 530,000 Patients


A class-action lawsuit was filed against Baltimore-based LifeBridge Health on Thursday over its 2016 health data breach, disclosed to the public in May 2018. According to the release, law firm Murphy, Falcon and Murphy filed the statewide...


SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
Data Breaches

Our privacy policy

no, thanks

Continue to site...