Healthcare Information Security

Healthcare Phishing

Children’s Mercy Hospital Phishing Attack Impacts PHI of 60K

July 5, 2018 - A phishing attack targeting employees at Missouri-based Children’s Mercy Hospital may have compromised PHI on more than 60,000 individuals, the Kansas City Star reported July 3. The information possibly accessed by hackers included patient names, medical record numbers, dates of hospital stays and procedures, diagnoses and conditions, and other clinical information. "The hospital...


More Articles

Cybercriminals Target Hospitals with SamSam Ransomware Attacks

by Fred Donovan

Cybercriminals increased their SamSam (aka SAMSA) ransomware attacks against the healthcare sector in the first quarter of 2018, with numerous cases reported of hospitals paying the ransom to regain access to their systems, according to...

Recent WannaCrypt Ransomware Attack Not Really Ransomware

by Fred Donovan

When you mention the word WannaCry, health IT security folks break into a cold sweat. They remember the havoc that the WannaCry ransomware attack wreaked on the healthcare industry last year. Cybercriminals claiming to be from the WannaCry-Hack-team...

Older Healthcare OSes Open to Cybersecurity Vulnerabilities

by Fred Donovan

The healthcare industry is the slowest industry in upgrading to Windows 10, meaning that many in healthcare are running older versions of Windows more susceptible to cybersecurity vulnerabilities, according to the latest data from Duo Security....

Healthcare Ransomware Attacks Soared in Q3 2017

by Fred Donovan

The number of healthcare ransomware attacks exploded in the third quarter of 2017, far outpacing all other types of cyberattacks against healthcare companies, but then dropped off sharply in the fourth quarter, according to the latest data from...

Cyberattackers Exploiting Weaknesses in Healthcare Data Security

by Fred Donovan

Cyberattackers are exploiting inherent weaknesses in healthcare data security, making the sector the most targeted industry in the first quarter of 2018, according to Rapid7’s quarterly threat report released May 15. The Rapid7 research...

Blue Shield of California Reports PHI Data Breach

by Fred Donovan

Blue Shield of California admitted to a PHI data breach involving an insurance broker who was not authorized to receive patient information, according to a breach notification submitted to the California Attorney General’s Office. ...

Primary Health Care PHI Data Security Incident Affects 10K

by Elizabeth Snell

Unauthorized access to employee email accounts may have led to a PHI data security incident at Primary Health Care Inc. (PHC), according to an organization statement. PHC discovered the access to four employee accounts and the related Google...

Potential PHI Exposure at BJC HealthCare Impacts 33K

by Elizabeth Snell

An internal security scan revealed that there was a data server configuration error, allowing potential PHI exposure at BJC HealthCare. The Missouri-based organization revealed in an online statement that 33,420 patients may have had their information...

Reported Kansas PHI Data Breach Could Involve Info of 11K

by Elizabeth Snell

An unauthorized email from a Kansas Department for Aging and Disability Services (KDADS) employee was sent to a group of business associates, which created a possible PHI data breach, according to a KDADS online statement. KDADS became aware...

Weak Healthcare Cybersecurity Employee Training Affects IT Security

by Elizabeth Snell

Covered entities must ensure that staff members at all levels receive regular and comprehensive healthcare cybersecurity employee training. This is a HIPAA requirement but is also critical to keeping the workforce up to date on evolving IT security...

OCR Highlights 8 Tips for Avoiding Healthcare Phishing Attacks

by Elizabeth Snell

Healthcare phishing attacks are becoming more sophisticated, which is why organizations must remain vigilant in their detection measures, OCR explained in its recent cybersecurity newsletter. Hackers can take advantage of popular holidays to...

Decatur County General EMR Security Incident Impacts 24K

by Elizabeth Snell

Tennessee-based Decatur County General Hospital experienced an EMR security incident when unauthorized software was installed on the server the EMR vendor supports on the organization’s behalf. Decatur County received a security incident...

78% of Healthcare Workers Lack Data Privacy, Security Preparedness

by Elizabeth Snell

Improved data privacy and security employee training programs will greatly benefit healthcare organizations as they work to keep pace against evolving cybersecurity threats, according to recent research. Seventy percent of employees in numerous...

Prevent Healthcare Phishing with Employee Security Training

by Elizabeth Snell

Implementing a strong employee security training program is consistently noted as a key way for covered entities to prevent healthcare phishing attacks. Organizations of all sizes need to ensure that staff members can recognize malicious emails...

Remaining Vigilant Against Increasing Healthcare Ransomware Threats

by Elizabeth Snell

Healthcare ransomware attacks increased by 89 percent from 2016 to 2017, according to recent research from Cryptonite. Furthermore, one-quarter of all IT/hacking events reported to OCR in 2017 were attributed to ransomware incidents. Gathering...

Ransomware Attack Raises Health Data Security Worry for 2.6K

by Elizabeth Snell

Columbus, Nebraska-based Eye Physicians, P.C. experienced a ransomware attack on October 7, 2017 that encrypted files on some of its servers. The organization was able to immediately restore servers through a backup, it explained in an online...

Unauthorized Server Access Creates Data Security Concern for 47K

by Elizabeth Snell

Carl Albert State College (CASC) is re-notifying certain individuals of unauthorized server access from 2016 that may create data security concerns. CASC explained in an online statement that the server was accessed on April 7, 2016. It...

Healthcare Phishing, Computer Viruses Top Cyber Attack Methods

by Elizabeth Snell

Healthcare organizations should consider increasing their cybersecurity measures as 83 percent of physicians report they have experienced a cybersecurity attack, according to research from Accenture and the American Medical Association (AMA)....

78% of Providers Report Healthcare Ransomware, Malware Attacks

by Elizabeth Snell

Email is the most likely cause for a data breach, according to recent research, with 78 percent of providers reporting that they experienced a healthcare ransomware or malware attack in the past 12 months. Eighty-seven percent of respondents...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks

Continue to site...