Healthcare Information Security

Healthcare Phishing

42,000 Records Breached in Cancer Treatment Center Phishing Hack

December 4, 2018 - Cancer Treatment Centers of America at Western Regional Medical Center is notifying about 41,948 patients that their personal data was potentially breached by a phishing attack. On September 26, officials discovered an email account was hacked, after an employee fell victim to a phishing attack on May 2. The employee shared their network log-in credentials in response to a fraudulent...


More Articles

Phishing Attack Impacts Health Data of 128K Employees, Patients

by Jessica Davis

New York Oncology Hematology is notifying 128,400 employees and patients that their patient data may have been breached, after 15 employees fell victim to a phishing campaign in April. The phishing emails were highly targeted, appearing...

VUMC Fights Healthcare Phishing with Multi-Factor Authentication

by Jessica Davis

The healthcare sector has remained a primary target for phishing attacks in recent years, with highly targeted viruses like SamSam and Ryuk wreaking havoc on the industry. In fact, one in every hundred emails sent globally has malicious...

Phishing Attacks Breach Data of 42K Florida Patients for 3 Months

by Jessica Davis

Florida-based Health First notified 42,000 patients that their personal data may have been exposed for three months after several employees fell victim to phishing attacks. The breach was reported to the Department of Health and Human...

MNIT Commissioner Faces Legislative Scrutiny Over Phishing Attacks

by Fred Donovan

Minnesota IT Services (MNIT) Commissioner Johanna Clyborne faced criticism for the four-month delay in informing victims of two phishing attacks that exposed PHI and other personal information on 20,800 clients of the Minnesota Department...

PHI on 37K at Risk in Gold Coast Health Plan Phishing Attack

by Fred Donovan

California-based Gold Coast Health Plan (GCHP) reported to OCR Oct. 5 that a phishing attack exposed PHI on 37,005 individuals. In a Oct. 8 news release, GCHP said that attackers compromised an employee’s email account,...

‘Payment Notification’ Is Top Healthcare Phishing Attack Subject

by Fred Donovan

The term “Payment Notification” is the top healthcare phishing attack subject, appearing in 58 percent of healthcare phishing attack campaigns in 2018, according to the latest data from Cofense. Other popular subjects in...

HHS Still Leads in DMARC Implementation To Stop Phishing Attacks

by Fred Donovan

With the Oct. 16 deadline looming, HHS continues to lead in securing the most domains of any federal agency as part of the DMARC protocol implementation, which is designed to prevent phishing attacks from succeeding. As of Sept. 14, HHS...

Independence Blue Cross Admits to Healthcare Data Breach

by Fred Donovan

Philadelphia-based Independence Blue Cross (IBC) announced Sept. 17 that PHI was uploaded by an employee to a website that was publicly accessible between April 23 and July 20, 2018. KYW news radio reported that around 17,000 IBC...

Healthcare Lags Other Industries in Phishing Attack Resiliency Rate

by Fred Donovan

Healthcare trails other major industries in its phishing attack resiliency rate, which measures the ratio between people who report a phish versus those who fall victim to one, according to a report released Sept. 17 by Cofense. The...

Reliable Respiratory Says Phishing Attack Affected 21K Individuals

by Fred Donovan

Massachusetts-based medical equipment supplier Reliable Respiratory reported to OCR on Sept. 1 that a phishing attack exposed PHI on 21,311 individuals. In a notice on its website, Reliable Respiratory said that on July 3 it discovered a...

Phishing Attacks That Impersonate Trusted Individuals on the Rise

by Fred Donovan

There was an 80 percent increase in phishing attacks that impersonated someone familiar to the targeted individual, according a study released August 28 by email security firm Mimecast. Mimecast found that there was one unstopped...

417K Patients Exposed In Latest Phishing Attack at AU Health

by Fred Donovan

Close to half a million people may have had their PHI and other personal information exposed in a September 2017 phishing attack that impacted the Augusta University (AU) Health system. Another phishing attack on July 11, 2018, may have...

InterAct of Michigan Phishing Attack Exposes PHI on 1,290 People

by Fred Donovan

InterAct of Michigan reported to OCR on August 7 that an email hacking incident may have exposed PHI on 1,290 individuals. In a statement on its website, InterAct explained that it became aware on June 8 that an unauthorized third party...

Phishing Attack Exposes PHI of 1.4M UnityPoint Health Patients

by Fred Donovan

Iowa-based UnityPoint Health said July 30 that it notified approximately 1.4 million patients of a recent email phishing attack incident that may have compromised their PHI. Patient information that might have...

HHS Leads Federal Agencies in Email Security Implementation

by Fred Donovan

HHS has secured the most domains of any federal agency as part of the DMARC email security protocol implementation mandated by the Department of Homeland Security (DHS), according to a study by email security firm Agari. The Domain-based...

PHI of 18,000 UMCP Patients at Risk in Healthcare Data Breach

by Fred Donovan

UMC Physicians (UMCP), a physician practice managment group set up by Texas-based UMC Health System, announced July 11 that it had notified more than 18,000 patients about a healthcare data breach in which their PHI may have...

Children’s Mercy Hospital Phishing Attack Impacts PHI of 60K

by Fred Donovan

A phishing attack targeting employees at Missouri-based Children’s Mercy Hospital may have compromised PHI on more than 60,000 individuals, the Kansas City Star reported July 3. The information possibly accessed by hackers included...

Cybercriminals Target Hospitals with SamSam Ransomware Attacks

by Fred Donovan

Cybercriminals increased their SamSam (aka SAMSA) ransomware attacks against the healthcare sector in the first quarter of 2018, with numerous cases reported of hospitals paying the ransom to regain access to their systems, according...

Recent WannaCrypt Ransomware Attack Not Really Ransomware

by Fred Donovan

When you mention the word WannaCry, health IT security folks break into a cold sweat. They remember the havoc that the WannaCry ransomware attack wreaked on the healthcare industry last year. Cybercriminals claiming to be from the...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...