Healthcare Information Security

Patient Data Security

Meditab Medical Records, Physician Notes Breached by Vendor Error

March 19, 2019 - The third-party vendor of California-based Meditab, MedPharm Services, exposed medical data and other real-time personal information on an unsecured fax server, according to a TechCrunch report. Meditab is an electronic medical records software maker, serving doctors, health systems, and pharmacies. The company also processes faxes for those providers in real-time, including...

More Articles

Delaware Guidance Services Ransomware Attack Impacts 50,000

by Jessica Davis

Dover-based Delaware Guidance Services for Children and Youth is notifying about 50,000 parents and guardians that their child’s data was impacted during a December ransomware attack. On December 25, DGS discovered ransomware on its...

IoT Devices, Ultrasound Machines Pose Risk to Health IT Network

by Jessica Davis

The weakest link of a healthcare IT network is IoT devices, cloud, and mobile, including ultrasound machines, due to legacy operating systems and open source systems, according to a new report from Check Point Research. The researchers...

Emerson Hospital Reports Third-party Vendor Breach from May 2018

by Jessica Davis

Concord, Massachusetts-based Emerson Hospital is notifying 6,300 patients that their data was potentially breached nearly one year ago, due to insider wrongdoing at one of its vendors. According to a statement released on March 8, the...

Senator Proposes Health Data Privacy Bill Requiring Explicit Consent

by Jessica Davis

Sen. Catherine Cortez Masto, D-Nevada, recently unveiled her take on data privacy legislation that would require companies not covered by HIPAA to get explicit consent from patients before gathering and sharing health and genetic...

326,000 Patients Impacted in UConn Health Phishing Attack

by Jessica Davis

A phishing attack on UConn Health potentially breached some personal and medical data of 326,000 patients, the Connecticut-based health system announced on Friday. UConn Health recently discovered a hacker accessed a number of employee...

2.7M Medical Calls, Sensitive Audio Exposed Online for 6 Years

by Jessica Davis

A 1177 Swedish Healthcare Guide Service server used to store the phone calls made to the service for healthcare information was left unencrypted and exposed online with no user authentication requirement, according to IDG Computer...

42,000 AdventHealth Patients Impacted in Yearlong Data Breach

by Jessica Davis

About 42,000 AdventHealth Medical Group Pulmonary and Sleep Medicine patients are being notified that their personal and health data was breached for more than a year due to a hack of the Florida provider’s systems. On December...

Phishing, Negligent Insiders Leave Healthcare Vulnerable, HIMSS says

by Jessica Davis

The healthcare sector is continuing to make positive improvements around cybersecurity, with many allocating more budgets to shore up threats. However, legacy systems and failure to perform phishing tests “raise grave concerns”...

OCR Settles with Cottage Health for $3M After 2 Patient Data Breaches

by Jessica Davis

California-based Cottage Health settled with the Department of Health and Human Services’ Office for Civil Rights for $3 million and the adoption of a corrective action plan, over two separate security incidents in 2013 and 2015 that...

Ransomware Attack on Connecticut Provider Impacts 24,000 Patients

by Jessica Davis

Connecticut-based optometrists Dr. Thomas DeLuca, Dr. Anthony Marciano & Associates recently began notifying about 23,578 patients that their personal data was potentially breached during a ransomware attack. On November 29, the eye...

Improving Medical Device Security Beyond Patching, Traditional Tools

by Jessica Davis

Medical device security was thrust into the spotlight in 2018, as the Food and Drug Administration continued to bolster its cybersecurity program. In fact, an August MedCrypt report found that since the FDA released its cybersecurity...

Notorious Ryuk Ransomware Adds Trojans to Cyberattack Method

by Jessica Davis

Ryuk ransomware – which pummeled the healthcare sector in the fall – has added Emotet and Trickbot trojans to its attack method, to gain access into a network, according to new research from FireEye and CrowdStrike. The...

Hackers Launching DNS Infrastructure Hijacking Campaign, Feds Warn

by Jessica Davis

Hackers are targeting Domain Name System (DNS) infrastructure with a global hijacking campaign across all sectors, according to a new alert from the Department of Homeland Security National Cybersecurity and Communications Integration...

Phishing Attack Hits Kent County Community Mental Health

by Jessica Davis

Kent County Community Mental Health Authority is notifying 2,284 patients that their data was potentially breached after several phishing attacks. According to officials, three employees fell victim to targeted phishing campaigns on...

Third-Party Vendor Phishing Attack Breaches 31,000 Patient Records

by Jessica Davis

Managed Health Services of Indiana Health Plan is notifying about 31,000 patients of a potential breach to their personal data, caused by a phishing attack on a business associate. According to officials, several employees of LCP...

Ransomware Corrupts 24,000 Patient Records of California Specialist

by Jessica Davis

A ransomware attack on the Podiatric Offices of Bobby Yee corrupted and possibly altered the medical records of 24,000 patients, according to a recent notification. Typically, ransomware merely encrypts the data on the infected computers,...

Blue Cross Blue Shield of Michigan Reports Second Breach in December

by Jessica Davis

Blue Cross Blue Shield of Michigan policyholders were notified of a second potential breach of their personal and health data in December, after a ransomware attack on one of the insurer’s service providers. Wolverine Solutions fell...

Blue Cross Blue Shield of Michigan Breach Impacts 15,000 Customers

by Jessica Davis

Blue Cross Blue Shield of Michigan is notifying 15,000 customers that their data was potentially breached due to a stolen laptop. According to the notice, the stolen laptop belonged to a business associate of one of its subsidiaries. An...

The 10 Biggest U.S. Healthcare Data Breaches of 2018

by Jessica Davis

The threat landscape has continued to evolve throughout the year, with hackers ramping up targeted, sophisticated attacks. Ransomware continued to plague the healthcare sector, while phishing attacks and insider errors led to some of the...


SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
Data Breaches

Our privacy policy

no, thanks

Continue to site...