Healthcare Information Security

Healthcare Phishing

Roper St. Francis, Valley Professionals Phishing Attacks Breach Patient Data

February 4, 2019 - Charleston, South Carolina-based Roper St. Francis Healthcare and Valley Professionals Community Health Center (VPCHC) in Indiana recently began notifying patients that their data was potentially breached after employees fell victim to targeted phishing campaigns. Thirteen Roper St. Francis employees fell victim to a large-scale phishing campaign, which was discovered on November 30....


More Articles

Months-Long Phishing Attack on Rehab Center Breaches Patient Data

by Jessica Davis

Memphis-based Sacred Heart Rehabilitation Center recently began notifying patients that their personal data was potentially breached due to a phishing attack. Officials discovered the hacker gained access to an employee email account...

4-Month Breach of BenefitMall Impacts 112,000 Plan Members

by Jessica Davis

Centerstone Insurance and Financial Services, operating as BenefitMall, is notifying 111,589 consumers that their personal data was potentially breached during a months-long phishing attack. On October 11, officials discovered a hacker...

Notorious Ryuk Ransomware Adds Trojans to Cyberattack Method

by Jessica Davis

Ryuk ransomware – which pummeled the healthcare sector in the fall – has added Emotet and Trickbot trojans to its attack method, to gain access into a network, according to new research from FireEye and CrowdStrike. The...

Ransomware Corrupts 24,000 Patient Records of California Specialist

by Jessica Davis

A ransomware attack on the Podiatric Offices of Bobby Yee corrupted and possibly altered the medical records of 24,000 patients, according to a recent notification. Typically, ransomware merely encrypts the data on the infected computers,...

42,000 Records Breached in Cancer Treatment Center Phishing Hack

by Jessica Davis

Cancer Treatment Centers of America at Western Regional Medical Center is notifying about 41,948 patients that their personal data was potentially breached by a phishing attack. On September 26, officials discovered an email account was...

Phishing Attack Impacts Health Data of 128K Employees, Patients

by Jessica Davis

New York Oncology Hematology is notifying 128,400 employees and patients that their patient data may have been breached, after 15 employees fell victim to a phishing campaign in April. The phishing emails were highly targeted, appearing...

VUMC Fights Healthcare Phishing with Multi-Factor Authentication

by Jessica Davis

The healthcare sector has remained a primary target for phishing attacks in recent years, with highly targeted viruses like SamSam and Ryuk wreaking havoc on the industry. In fact, one in every hundred emails sent globally has malicious...

Phishing Attacks Breach Data of 42K Florida Patients for 3 Months

by Jessica Davis

Florida-based Health First notified 42,000 patients that their personal data may have been exposed for three months after several employees fell victim to phishing attacks. The breach was reported to the Department of Health and Human...

MNIT Commissioner Faces Legislative Scrutiny Over Phishing Attacks

by Fred Donovan

Minnesota IT Services (MNIT) Commissioner Johanna Clyborne faced criticism for the four-month delay in informing victims of two phishing attacks that exposed PHI and other personal information on 20,800 clients of the Minnesota Department...

PHI on 37K at Risk in Gold Coast Health Plan Phishing Attack

by Fred Donovan

California-based Gold Coast Health Plan (GCHP) reported to OCR Oct. 5 that a phishing attack exposed PHI on 37,005 individuals. In a Oct. 8 news release, GCHP said that attackers compromised an employee’s email account,...

‘Payment Notification’ Is Top Healthcare Phishing Attack Subject

by Fred Donovan

The term “Payment Notification” is the top healthcare phishing attack subject, appearing in 58 percent of healthcare phishing attack campaigns in 2018, according to the latest data from Cofense. Other popular subjects in...

HHS Still Leads in DMARC Implementation To Stop Phishing Attacks

by Fred Donovan

With the Oct. 16 deadline looming, HHS continues to lead in securing the most domains of any federal agency as part of the DMARC protocol implementation, which is designed to prevent phishing attacks from succeeding. As of Sept. 14, HHS...

Independence Blue Cross Admits to Healthcare Data Breach

by Fred Donovan

Philadelphia-based Independence Blue Cross (IBC) announced Sept. 17 that PHI was uploaded by an employee to a website that was publicly accessible between April 23 and July 20, 2018. KYW news radio reported that around 17,000 IBC...

Healthcare Lags Other Industries in Phishing Attack Resiliency Rate

by Fred Donovan

Healthcare trails other major industries in its phishing attack resiliency rate, which measures the ratio between people who report a phish versus those who fall victim to one, according to a report released Sept. 17 by Cofense. The...

Reliable Respiratory Says Phishing Attack Affected 21K Individuals

by Fred Donovan

Massachusetts-based medical equipment supplier Reliable Respiratory reported to OCR on Sept. 1 that a phishing attack exposed PHI on 21,311 individuals. In a notice on its website, Reliable Respiratory said that on July 3 it discovered a...

Phishing Attacks That Impersonate Trusted Individuals on the Rise

by Fred Donovan

There was an 80 percent increase in phishing attacks that impersonated someone familiar to the targeted individual, according a study released August 28 by email security firm Mimecast. Mimecast found that there was one unstopped...

417K Patients Exposed In Latest Phishing Attack at AU Health

by Fred Donovan

Close to half a million people may have had their PHI and other personal information exposed in a September 2017 phishing attack that impacted the Augusta University (AU) Health system. Another phishing attack on July 11, 2018, may have...

InterAct of Michigan Phishing Attack Exposes PHI on 1,290 People

by Fred Donovan

InterAct of Michigan reported to OCR on August 7 that an email hacking incident may have exposed PHI on 1,290 individuals. In a statement on its website, InterAct explained that it became aware on June 8 that an unauthorized third party...

Phishing Attack Exposes PHI of 1.4M UnityPoint Health Patients

by Fred Donovan

Iowa-based UnityPoint Health said July 30 that it notified approximately 1.4 million patients of a recent email phishing attack incident that may have compromised their PHI. Patient information that might have...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...