Healthcare Information Security

Cybersecurity in Healthcare

Could HIPAA be Repealed, Replaced with a Unified Federal Privacy Law?

January 17, 2019 - The Information Technology and Innovation Fund is recommending a repeal of privacy regulations across the U.S., including HIPAA, to replace the patchwork of federal laws with a unified approach. Among its recommendations, ITIF is calling for data protection rules based on the type of data and the entity collecting it, that enables consumers to make more informed decisions around their...


More Articles

DoD Health Agency Security Flaws Put Patient Data at Risk, OIG Finds

by Jessica Davis

The Department of Defense Health Agency (DHA) failed to consistently implement security measures to protect the systems that stored, processed, and transmitted electronic health record and patient information, according to a DoD...

4-Month Breach of BenefitMall Impacts 112,000 Plan Members

by Jessica Davis

Centerstone Insurance and Financial Services, operating as BenefitMall, is notifying 111,589 consumers that their personal data was potentially breached during a months-long phishing attack. On October 11, officials discovered a hacker...

Cryptomining Top Malware Threat, Multi-Purpose Malware Surges

by Jessica Davis

For the past 13 months, cryptomining topped the list of leading malware threats, according to Check Point’s latest Global Threat Index for December 2018. In fact, the top four malware threats were cryptomining variants, despite the...

Notorious Ryuk Ransomware Adds Trojans to Cyberattack Method

by Jessica Davis

Ryuk ransomware – which pummeled the healthcare sector in the fall – has added Emotet and Trickbot trojans to its attack method, to gain access into a network, according to new research from FireEye and CrowdStrike. The...

Judge Gives Boston Children’s Hospital Hacker 10-Year Jail Sentence

by Jessica Davis

The hacker behind the notorious 2014 cyberattack on Boston Children’s hospital and another facility has been sentenced to 10 years in prison. In August 2018, Martin Gottesfeld was found guilty of launching the attack on behalf of...

Hackers Launching DNS Infrastructure Hijacking Campaign, Feds Warn

by Jessica Davis

Hackers are targeting Domain Name System (DNS) infrastructure with a global hijacking campaign across all sectors, according to a new alert from the Department of Homeland Security National Cybersecurity and Communications Integration...

Phishing Attack Hits Kent County Community Mental Health

by Jessica Davis

Kent County Community Mental Health Authority is notifying 2,284 patients that their data was potentially breached after several phishing attacks. According to officials, three employees fell victim to targeted phishing campaigns on...

New Phishing Tool Bypasses Two-Factor Authentication

by Jessica Davis

A security researcher recently released a hacking tool that takes phishing attacks to a whole new level: It both automates phishing attacks and breaks through two-factor authentication functions with ease. Modlishka was created by Piotr...

Third-Party Vendor Phishing Attack Breaches 31,000 Patient Records

by Jessica Davis

Managed Health Services of Indiana Health Plan is notifying about 31,000 patients of a potential breach to their personal data, caused by a phishing attack on a business associate. According to officials, several employees of LCP...

Where Does AI Automation Fit Into Health Data Security?

by Jessica Davis

The 2017 Health Care Industry Cybersecurity Task Force report painted a damning picture of cybersecurity in healthcare, including the discovery that three out of four hospitals operate without a designated security leader. Those providers...

Ransomware Corrupts 24,000 Patient Records of California Specialist

by Jessica Davis

A ransomware attack on the Podiatric Offices of Bobby Yee corrupted and possibly altered the medical records of 24,000 patients, according to a recent notification. Typically, ransomware merely encrypts the data on the infected computers,...

Blue Cross Blue Shield of Michigan Reports Second Breach in December

by Jessica Davis

Blue Cross Blue Shield of Michigan policyholders were notified of a second potential breach of their personal and health data in December, after a ransomware attack on one of the insurer’s service providers. Wolverine Solutions fell...

Hackers Breach Data of 4,300 Missouri Patients for 3 Months

by Jessica Davis

Missouri-based Choice Rehabilitation Center is notifying 4,309 patients that their data was breached in a months-long hack on a corporate email account. On November 7, Choice discovered that one of its email accounts was hacked....

NIST Telehealth Remote Monitoring Guidance Plan Gets AMIA Support

by Jessica Davis

The National Institute of Standards and Technology recently announced it would fund a project to develop guidance around the security and privacy risks associated with remote patient monitoring. NIST said its team will perform a risk...

Hospitals Spend 64% More on Advertising After a Data Breach

by Jessica Davis

Hospitals spend 64 percent more annually on advertising after a breach over the following two years, according to a recent report from the American Journal of Managed Care. Researchers Sung J. Choi and M. Eric Johnson examined nonfederal...

Blue Cross Blue Shield of Michigan Breach Impacts 15,000 Customers

by Jessica Davis

Blue Cross Blue Shield of Michigan is notifying 15,000 customers that their data was potentially breached due to a stolen laptop. According to the notice, the stolen laptop belonged to a business associate of one of its subsidiaries. An...

HHS Releases Best Practice Healthcare Cybersecurity Guidelines

by Jessica Davis

The Department of Health and Human Services issued cybersecurity guidelines for the healthcare sector on Friday, focused on voluntary cybersecurity practices to reduce security risks and bolster cybersecurity programs across the...

Malware Attack on BJC Healthcare Breaches Credit Card Data

by Jessica Davis

The patient portal of Missouri-based BJC Healthcare was hacked with malware, which potentially intercepted the credit and debit card numbers of 5,850 patients. According to officials, the breach was discovered on November 19. An...

The 10 Biggest U.S. Healthcare Data Breaches of 2018

by Jessica Davis

The threat landscape has continued to evolve throughout the year, with hackers ramping up targeted, sophisticated attacks. Ransomware continued to plague the healthcare sector, while phishing attacks and insider errors led to some of the...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...