Healthcare Information Security

Healthcare Phishing

‘Payment Notification’ Is Top Healthcare Phishing Attack Subject

October 11, 2018 - The term “Payment Notification” is the top healthcare phishing attack subject, appearing in 58 percent of healthcare phishing attack campaigns in 2018, according to the latest data from Cofense. Other popular subjects in healthcare phishing attacks are “New Message in Mailbox” and “Attached Invoice.” Cofense (formerly PhishMe) found that 7 percent...


More Articles

HHS Still Leads in DMARC Implementation To Stop Phishing Attacks

by Fred Donovan

With the Oct. 16 deadline looming, HHS continues to lead in securing the most domains of any federal agency as part of the DMARC protocol implementation, which is designed to prevent phishing attacks from succeeding. As of Sept. 14, HHS...

Independence Blue Cross Admits to Healthcare Data Breach

by Fred Donovan

Philadelphia-based Independence Blue Cross (IBC) announced Sept. 17 that PHI was uploaded by an employee to a website that was publicly accessible between April 23 and July 20, 2018. KYW news radio reported that around 17,000 IBC...

Healthcare Lags Other Industries in Phishing Attack Resiliency Rate

by Fred Donovan

Healthcare trails other major industries in its phishing attack resiliency rate, which measures the ratio between people who report a phish versus those who fall victim to one, according to a report released Sept. 17 by Cofense. The...

Reliable Respiratory Says Phishing Attack Affected 21K Individuals

by Fred Donovan

Massachusetts-based medical equipment supplier Reliable Respiratory reported to OCR on Sept. 1 that a phishing attack exposed PHI on 21,311 individuals. In a notice on its website, Reliable Respiratory said that on July 3 it discovered a...

Phishing Attacks That Impersonate Trusted Individuals on the Rise

by Fred Donovan

There was an 80 percent increase in phishing attacks that impersonated someone familiar to the targeted individual, according a study released August 28 by email security firm Mimecast. Mimecast found that there was one unstopped...

417K Patients Exposed In Latest Phishing Attack at AU Health

by Fred Donovan

Close to half a million people may have had their PHI and other personal information exposed in a September 2017 phishing attack that impacted the Augusta University (AU) Health system. Another phishing attack on July 11, 2018, may have...

InterAct of Michigan Phishing Attack Exposes PHI on 1,290 People

by Fred Donovan

InterAct of Michigan reported to OCR on August 7 that an email hacking incident may have exposed PHI on 1,290 individuals. In a statement on its website, InterAct explained that it became aware on June 8 that an unauthorized third party...

Phishing Attack Exposes PHI of 1.4M UnityPoint Health Patients

by Fred Donovan

Iowa-based UnityPoint Health said July 30 that it notified approximately 1.4 million patients of a recent email phishing attack incident that may have compromised their PHI. Patient information that might have...

HHS Leads Federal Agencies in Email Security Implementation

by Fred Donovan

HHS has secured the most domains of any federal agency as part of the DMARC email security protocol implementation mandated by the Department of Homeland Security (DHS), according to a study by email security firm Agari. The Domain-based...

PHI of 18,000 UMCP Patients at Risk in Healthcare Data Breach

by Fred Donovan

UMC Physicians (UMCP), a physician practice managment group set up by Texas-based UMC Health System, announced July 11 that it had notified more than 18,000 patients about a healthcare data breach in which their PHI may have...

Children’s Mercy Hospital Phishing Attack Impacts PHI of 60K

by Fred Donovan

A phishing attack targeting employees at Missouri-based Children’s Mercy Hospital may have compromised PHI on more than 60,000 individuals, the Kansas City Star reported July 3. The information possibly accessed by hackers included...

Cybercriminals Target Hospitals with SamSam Ransomware Attacks

by Fred Donovan

Cybercriminals increased their SamSam (aka SAMSA) ransomware attacks against the healthcare sector in the first quarter of 2018, with numerous cases reported of hospitals paying the ransom to regain access to their systems, according...

Recent WannaCrypt Ransomware Attack Not Really Ransomware

by Fred Donovan

When you mention the word WannaCry, health IT security folks break into a cold sweat. They remember the havoc that the WannaCry ransomware attack wreaked on the healthcare industry last year. Cybercriminals claiming to be from the...

Older Healthcare OSes Open to Cybersecurity Vulnerabilities

by Fred Donovan

The healthcare industry is the slowest industry in upgrading to Windows 10, meaning that many in healthcare are running older versions of Windows more susceptible to cybersecurity vulnerabilities, according to the latest data from Duo...

Healthcare Ransomware Attacks Soared in Q3 2017

by Fred Donovan

The number of healthcare ransomware attacks exploded in the third quarter of 2017, far outpacing all other types of cyberattacks against healthcare companies, but then dropped off sharply in the fourth quarter, according to the latest data...

Cyberattackers Exploiting Weaknesses in Healthcare Data Security

by Fred Donovan

Cyberattackers are exploiting inherent weaknesses in healthcare data security, making the sector the most targeted industry in the first quarter of 2018, according to Rapid7’s quarterly threat report released May 15. The Rapid7...

Blue Shield of California Reports PHI Data Breach

by Fred Donovan

Blue Shield of California admitted to a PHI data breach involving an insurance broker who was not authorized to receive patient information, according to a breach notification submitted to the California Attorney General’s...

Primary Health Care PHI Data Security Incident Affects 10K

by Elizabeth Snell

Unauthorized access to employee email accounts may have led to a PHI data security incident at Primary Health Care Inc. (PHC), according to an organization statement. PHC discovered the access to four employee accounts and the related...

Potential PHI Exposure at BJC HealthCare Impacts 33K

by Elizabeth Snell

An internal security scan revealed that there was a data server configuration error, allowing potential PHI exposure at BJC HealthCare. The Missouri-based organization revealed in an online statement that 33,420 patients may have had...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks