Healthcare Information Security

Cybersecurity in Healthcare

42,000 AdventHealth Patients Impacted in Yearlong Data Breach

by Jessica Davis

About 42,000 AdventHealth Medical Group Pulmonary and Sleep Medicine patients are being notified that their personal and health data was breached for more than a year due to a hack of the Florida provider’s systems. On December...

Google Cloud Partners with Imprivata on Single Sign-On Access

by Jessica Davis

Imprivata, a health IT security firm, is partnering with Google Cloud to enable single sign-on capabilities on Chrome devices in the healthcare sector, the companies announced this week at HIMSS19. The collaboration will leverage...

United Hospital District Reports June 2018 Breach from Phishing Attack

by Jessica Davis

Minnesota-based United Hospital District is notifying 2,143 patients that their data was compromised during a June 2018 phishing attack. According to officials, the breach occurred for about two weeks from June 10 and June 27, 2018. The...

OIG Finds Security Risks in NIH Data Sharing Processes, Controls

by Jessica Davis

The Department of Health and Human Services’ Office of the Inspector General discovered risks in the ways the National Institutes of Health shares its sensitive data, including the controls of permitted access to sensitive NIH...

15 Million Patient Records Breached in 2018; Hacking, Phishing Surges

by Jessica Davis

Fifteen million patient records were breached during 503 healthcare data breaches in 2018, nearly triple the amount of reported incidents from the previous year, according to the Protenus 2019 Breach Barometer. Protenus analyzed the...

Email Fraud Attacks on Healthcare Jumped 473% Since 2017

by Jessica Davis

Email fraud attacks on the healthcare sector increased by a whopping 473 percent between the first quarter of 2017 and the fourth quarter of 2017, according to a new report from Proofpoint. Proofpoint analyzed over 160 billion emails sent...

Phishing, Negligent Insiders Leave Healthcare Vulnerable, HIMSS says

by Jessica Davis

The healthcare sector is continuing to make positive improvements around cybersecurity, with many allocating more budgets to shore up threats. However, legacy systems and failure to perform phishing tests “raise grave concerns”...

Hackers Attempt to Extort Ontario Healthcare Provider CarePartners

by Jessica Davis

CarePartners experienced a data breach in 2018, and now the hackers are attempting to extort the Ontario-based provider for 5 bitcoins, or about $18,000, to prevent the public release of employee and patient files, according to...

How Multi-Factor Authentication Can Combat Phishing, Cyberattacks

by Jessica Davis

Healthcare has been steadily moving into consumerization, as the industry shifts into value-based care and patients demand easier access to their data. At the same time, cyber threats and hackers have increased in sophistication,...

24,000 Patient Records Breached in EyeSouth Partners Email Hack

by Jessica Davis

Georgia-based EyeSouth Partners recently began notifying 24,113 patients that their protected health information was potentially compromised after an employee email hack. On October 25, officials discovered an individual gained...

Ransomware Attack on Connecticut Provider Impacts 24,000 Patients

by Jessica Davis

Connecticut-based optometrists Dr. Thomas DeLuca, Dr. Anthony Marciano & Associates recently began notifying about 23,578 patients that their personal data was potentially breached during a ransomware attack. On November 29, the eye...

Roper St. Francis, Valley Professionals Phishing Attacks Breach Patient Data

by Jessica Davis

Charleston, South Carolina-based Roper St. Francis Healthcare and Valley Professionals Community Health Center (VPCHC) in Indiana recently began notifying patients that their data was potentially breached after employees fell victim to...

Ransomware Attack on Florida’s FABEN OB-GYN Results in Data Loss

by Jessica Davis

Florida-based FABEN Obstetrics and Gynecology was hit with a ransomware attack in November, which encrypted server files and caused some data to be permanently lost. On November 21, officials discovered a GandCrab ransomware infection on...

HIMSS19 to Showcase Compliance, Device Security, Vendor Management

by Jessica Davis

Cybersecurity, compliance, medical device security, and other pressing security matters will take center stage at the HIMSS19 annual conference, taking place February 11-15 in Orlando, Florida. Throughout the conference, visitors can...

Phishing Hack Breaches PHI of 23,000 Colorado Patients for 3 Months

by Jessica Davis

Colorado-based Critical Care, Pulmonary & Sleep Associates recently notified 23,000 patients that their personal data was potentially breached during a phishing attack. On November 23, CCPSA officials discovered a hacker gained access...

The Hits and Misses of HHS Healthcare Cybersecurity Guidelines

by Jessica Davis

The Department of Health and Human Services released a four-volume set of cybersecurity guidelines for the healthcare sector last month, which was applauded by many for its extensive breakdown of both risks and mitigations. Drafted in...

DHS Alerts to Vulnerabilities in Stryker and BD Medical Devices

by Jessica Davis

The Department of Homeland Security National Cybersecurity and Communications Integration Center released two advisories on Tuesday, notifying the healthcare sector of vulnerabilities in Stryker medical beds and Becton, Dickinson (BD)...

Phishing Attack on Verity Health Breaches Patient Data

by Jessica Davis

Verity Health System and Verity Medical Foundation are notifying patients that their data was potentially breached by two separate phishing attacks. According to officials, one cyberattack occurred in November and the other in...

Illinois Rules Actual Harm Not Required in Biometric Privacy Law

by Jessica Davis

The Illinois Supreme Court ruled on Friday that an individual can bring a lawsuit against an organization that violates the state’s Biometric Information Privacy Act, without alleging actual injury or adverse event. The court ruled...

LabKey Server Flaws Put Medical Research Data at Risk

by Jessica Davis

Tenable Research discovered three vulnerabilities in the LabKey Server, an open source medical data collaboration tool, which potentially could put medical research data at risk of unauthorized access. Released on Thursday, the report...


SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
Data Breaches

Our privacy policy

no, thanks

Continue to site...