Healthcare Information Security

Cybersecurity in Healthcare

Credential Compromise Top Goal of Phishing Attacks in 2018

by Jessica Davis

Phishing attacks exploded in 2018, with hackers leveraging the attacks in hopes to score the credentials from their victims, according to a new report from Proofpoint researchers. Compromising credentials as the goal of phishing attacks...

Alaska Bungles Breach Notification, 87,000 Patients Impacted

by Jessica Davis

The Alaska Department of Health and Social Services recently updated its breach notification to include substantially more patients than were included in its initial announcement from June 2018. But in the process, those estimates also...

Valley Hope Association Email Hack Breaches Patient Data

by Jessica Davis

Kansas-based Valley Hope Association recently began notifying patients that their data was potentially breached during an email hack. VHA is a drug and alcohol addiction treatment organization with 16 facilities in seven states. Officials...

Feds Issue Emergency Directive on DNS Infrastructure Hijacking Attacks

by Jessica Davis

The Department of Homeland Security Cybersecurity and Infrastructure Security Agency issued a rare emergency directive to all federal agencies to secure its DNS infrastructure, in the wake of a mass DNS infrastructure hijacking...

Healthcare Cyberattacks Cost $1.4 Million on Average in Recovery

by Jessica Davis

The average healthcare organization spent $1.4 million to recover from a cyberattack, according to a recent report from Radware. The number is slightly lower than other industries, which spent $1.67 million. The Radware 2018-2019 Global...

Zero-Day Virus Forces EHR Downtime at 21 Health Science North Hospitals

by Jessica Davis

The computer system of Sudbury, Ontario-based Health Sciences North was infected by a zero-day virus, driving officials to shut down its EHR to contain the infection, according to local news outlet CBC Radio-Canada. Staff at the Sudbury...

Could HIPAA be Repealed, Replaced with a Unified Federal Privacy Law?

by Jessica Davis

The Information Technology and Innovation Fund is recommending a repeal of privacy regulations across the U.S., including HIPAA, to replace the patchwork of federal laws with a unified approach. Among its recommendations, ITIF is calling...

DoD Health Agency Security Flaws Put Patient Data at Risk, OIG Finds

by Jessica Davis

The Department of Defense Health Agency (DHA) failed to consistently implement security measures to protect the systems that stored, processed, and transmitted electronic health record and patient information, according to a DoD...

4-Month Breach of BenefitMall Impacts 112,000 Plan Members

by Jessica Davis

Centerstone Insurance and Financial Services, operating as BenefitMall, is notifying 111,589 consumers that their personal data was potentially breached during a months-long phishing attack. On October 11, officials discovered a hacker...

Cryptomining Top Malware Threat, Multi-Purpose Malware Surges

by Jessica Davis

For the past 13 months, cryptomining topped the list of leading malware threats, according to Check Point’s latest Global Threat Index for December 2018. In fact, the top four malware threats were cryptomining variants, despite the...

Notorious Ryuk Ransomware Adds Trojans to Cyberattack Method

by Jessica Davis

Ryuk ransomware – which pummeled the healthcare sector in the fall – has added Emotet and Trickbot trojans to its attack method, to gain access into a network, according to new research from FireEye and CrowdStrike. The...

Judge Gives Boston Children’s Hospital Hacker 10-Year Jail Sentence

by Jessica Davis

The hacker behind the notorious 2014 cyberattack on Boston Children’s hospital and another facility has been sentenced to 10 years in prison. In August 2018, Martin Gottesfeld was found guilty of launching the attack on behalf of...

Hackers Launching DNS Infrastructure Hijacking Campaign, Feds Warn

by Jessica Davis

Hackers are targeting Domain Name System (DNS) infrastructure with a global hijacking campaign across all sectors, according to a new alert from the Department of Homeland Security National Cybersecurity and Communications Integration...

Phishing Attack Hits Kent County Community Mental Health

by Jessica Davis

Kent County Community Mental Health Authority is notifying 2,284 patients that their data was potentially breached after several phishing attacks. According to officials, three employees fell victim to targeted phishing campaigns on...

New Phishing Tool Bypasses Two-Factor Authentication

by Jessica Davis

A security researcher recently released a hacking tool that takes phishing attacks to a whole new level: It both automates phishing attacks and breaks through two-factor authentication functions with ease. Modlishka was created by Piotr...

Third-Party Vendor Phishing Attack Breaches 31,000 Patient Records

by Jessica Davis

Managed Health Services of Indiana Health Plan is notifying about 31,000 patients of a potential breach to their personal data, caused by a phishing attack on a business associate. According to officials, several employees of LCP...

Where Does AI Automation Fit Into Health Data Security?

by Jessica Davis

The 2017 Health Care Industry Cybersecurity Task Force report painted a damning picture of cybersecurity in healthcare, including the discovery that three out of four hospitals operate without a designated security leader. Those providers...

Ransomware Corrupts 24,000 Patient Records of California Specialist

by Jessica Davis

A ransomware attack on the Podiatric Offices of Bobby Yee corrupted and possibly altered the medical records of 24,000 patients, according to a recent notification. Typically, ransomware merely encrypts the data on the infected computers,...

Blue Cross Blue Shield of Michigan Reports Second Breach in December

by Jessica Davis

Blue Cross Blue Shield of Michigan policyholders were notified of a second potential breach of their personal and health data in December, after a ransomware attack on one of the insurer’s service providers. Wolverine Solutions fell...

Hackers Breach Data of 4,300 Missouri Patients for 3 Months

by Jessica Davis

Missouri-based Choice Rehabilitation Center is notifying 4,309 patients that their data was breached in a months-long hack on a corporate email account. On November 7, Choice discovered that one of its email accounts was hacked....

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...