The healthcare sector ranks lowest in several cybersecurity maturity domains, according to CYE's first Cybersecurity Maturity Report, which suggests that even organizations that handle highly...
President Biden signed the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) into law one year ago, requiring the Cybersecurity and Infrastructure Security Agency (CISA) to...
Thanks to a joint effort by the HHS Office of Inspector General (OIG) and the Federal Bureau of Investigation (FBI), a cybercriminal marketplace known as BreachForums was forced offline, the Department...
The Health Sector Cybersecurity Coordination Center (HC3) released a mobile device security checklist, containing important considerations for using mobile devices in a healthcare...
The healthcare sector struggles to keep pace in a rapidly changing healthcare cybersecurity landscape, as some CISOs neglect to leverage dark web intelligence, resulting in a weaker cyber posture...
The Cybersecurity and Infrastructure Security Agency (CISA) released an updated version of its Cybersecurity Performance Goals (CPGs), a set of voluntary practices that critical infrastructure...
Microsoft has observed an increase in distributed denial of service (DDoS) attacks against healthcare organizations in recent months, a blog post by the Azure Network Security Team explained. Microsoft...
UC San Diego Health notified patients of a healthcare data breach that occurred when its technology vendor, Solv Health, used analytics tools without the health system’s permission. Solv Health...
The Federal Bureau of Investigation (FBI) Internet Crime Complaint Center (IC3) issued its 2022 Internet Crime Report, which revealed key trends that emerged in the cyber threat landscape last...
After an email phishing attack, AllCare Plus Pharmacy reported to the Maine Attorney General that 5,971 patients potentially had their protected health information (PHI) exposed.
AllCare became aware...
During a recent Senate Homeland and Governmental Affairs Committee hearing, four healthcare industry leaders shared their views on healthcare cybersecurity challenges and the ways in which the federal...
The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Multi-State Information Sharing & Analysis Center (MS-ISAC) issued a joint...
Jelly Bean Communications Design LLC, a Florida-based design firm, agreed to pay $293,771 to resolve False Claims Act allegations related to cybersecurity failures, the Department of Justice (DOJ)...
The healthcare sector faces a new cybersecurity threat as the Black Basta ransomware group emerges, the Health Sector Cybersecurity Coordination Center (HC3) warned in a threat profile. The ransomware...
Miami, Florida-based Independent Living Systems (ILS) disclosed a healthcare data breach that impacted more than 4 million individuals, making it the largest reported healthcare data breach of 2023 to...
The Cybersecurity and Infrastructure Security Agency (CISA) launched its Ransomware Vulnerability Warning Pilot (RVWP) with the goal of helping critical infrastructure entities remain aware of and...
Blackbaud agreed to pay $3 million to settle charges relating to a 2020 ransomware attack that impacted more than 13,000 customers, the Securities and Exchange Commission (SEC) announced. Blackbaud...
ZOLL Medical Corporation recently began notifying more than one million individuals of a healthcare data breach. According to its website, ZOLL Medical develops novel resuscitation and acute critical...
Asante, an Oregon-based health system, has informed patients about a HIPAA violation caused by a physician who compromised protected health information (PHI) without a valid clinical need. For nearly...
Telehealth platform Cerebral reported a healthcare data breach to HHS impacting more than 3.1 million individuals. Cerebral provides online therapy and medication management to millions of...
