Healthcare Information Security

Patient Data Security

Notorious Ryuk Ransomware Adds Trojans to Cyberattack Method

January 14, 2019 - Ryuk ransomware – which pummeled the healthcare sector in the fall – has added Emotet and Trickbot trojans to its attack method, to gain access into a network, according to new research from FireEye and CrowdStrike. The Department of Health and Human Services alerted the healthcare sector to Ryuk’s target campaign in September, for its similarity to the SamSam...


More Articles

Hackers Launching DNS Infrastructure Hijacking Campaign, Feds Warn

by Jessica Davis

Hackers are targeting Domain Name System (DNS) infrastructure with a global hijacking campaign across all sectors, according to a new alert from the Department of Homeland Security National Cybersecurity and Communications Integration...

Phishing Attack Hits Kent County Community Mental Health

by Jessica Davis

Kent County Community Mental Health Authority is notifying 2,284 patients that their data was potentially breached after several phishing attacks. According to officials, three employees fell victim to targeted phishing campaigns on...

Third-Party Vendor Phishing Attack Breaches 31,000 Patient Records

by Jessica Davis

Managed Health Services of Indiana Health Plan is notifying about 31,000 patients of a potential breach to their personal data, caused by a phishing attack on a business associate. According to officials, several employees of LCP...

Ransomware Corrupts 24,000 Patient Records of California Specialist

by Jessica Davis

A ransomware attack on the Podiatric Offices of Bobby Yee corrupted and possibly altered the medical records of 24,000 patients, according to a recent notification. Typically, ransomware merely encrypts the data on the infected computers,...

Blue Cross Blue Shield of Michigan Reports Second Breach in December

by Jessica Davis

Blue Cross Blue Shield of Michigan policyholders were notified of a second potential breach of their personal and health data in December, after a ransomware attack on one of the insurer’s service providers. Wolverine Solutions fell...

Blue Cross Blue Shield of Michigan Breach Impacts 15,000 Customers

by Jessica Davis

Blue Cross Blue Shield of Michigan is notifying 15,000 customers that their data was potentially breached due to a stolen laptop. According to the notice, the stolen laptop belonged to a business associate of one of its subsidiaries. An...

The 10 Biggest U.S. Healthcare Data Breaches of 2018

by Jessica Davis

The threat landscape has continued to evolve throughout the year, with hackers ramping up targeted, sophisticated attacks. Ransomware continued to plague the healthcare sector, while phishing attacks and insider errors led to some of the...

DHS Finds Encryption Vulnerabilities in Medtronic Programmers

by Jessica Davis

The Department of Homeland Security’s Industrial Control Systems Cyber Emergency Response Team discovered encryption vulnerabilities in Medtronic’s 9790 and 2090 CareLink Programmers and 29901 Encore Programmers that could...

30 Percent of Online Health Databases Expose Patient Data

by Jessica Davis

About 30 percent of online healthcare databases are left exposed online due to misconfiguration, according to a recent report from IntSights. The researchers scoured the internet to determine how easy it would be for a hacker to access...

Data of 7,000 Tandigm Health Patients Exposed by Site Vulnerability

by Jessica Davis

Philadelphia-based Tandigm Health recently notified about 7,000 patients that their personal data may have been exposed for more than six months, due to a website vulnerability. On Sept. 25, 2018, Tandigm officials discovered a potential...

Healthcare’s Dependence on Fax Machines Poses Risk to Health Data

by Jessica Davis

While the healthcare sector has some of the most advanced technology available, it’s oft perplexing to discover that about 75 percent of all healthcare communications are still processed by the antiquated fax machine. Security...

NIH Reboots Genomic Data Access After Patient Privacy Fears Eased

by Fred Donovan

The National Institutes of Health (NIH) has resumed public access to its genomic summary results after restricting access for ten years over patient privacy concerns. Genomic summary results “convey information relevant to...

OCR Drafts NPRM on ‘Good Faith’ Patient Data Disclosure Rules

by Fred Donovan

OCR is drafting a notice of proposed rulemaking (NPRM) on “good faith” disclosures of patient data by healthcare providers in patient emergencies, such as an opioid overdose. This disclosure could be done without the...

Securing Patient Data While Embracing Innovation

by Insight

Healthcare organizations are increasingly looking to the latest technologies to improve patient care and cost efficiencies. These technologies include telemedicine and virtual care, mobile devices and wearables, the Internet of Things...

Best Practices for Providers to Secure Patient Data

by Insight

The number and frequency of cyberthreats to patient data show no sign of slowing down, with hackers devoting more time and resources to stealing patient data. As a result, healthcare organizations are becoming increasingly worried about...

Speed, Not Security, Tops Priority List for Blockchain in Healthcare

by Jessica Kent

While 84 percent of IT executives believe blockchain-based solutions are more secure than traditional systems, just 21 percent cited improved security and lower risk to data as the most significant benefit of blockchain adoption, according...

Some Healthcare Firms Struggle To Comply with EU Data Privacy Rule

by Fred Donovan

Around one-third of healthcare organizations are still “on the journey” to comply with the EU's General Data Protection Regulation (GDPR), even though the GDPR took effect May 25, according to a cross-industry global survey...

Court Dismisses FTC Order on LabMD’s Data Security Lapses

by Fred Donovan

In a long anticipated ruling, a federal appeals court has thrown out a Federal Trade Commission (FTC) order directing the now-defunct medical testing firm LabMD to overhaul its data security program. In 2013, the FTC filed a complaint...

Associates in Psychiatry and Psychology Suffers Ransomware Attack

by Fred Donovan

Minnesota-based Associates in Psychiatry and Psychology (APP) said that it suffered a Triple-M ransomware attack on March 30-31. It notified OCR on May 18 that 6,546 individuals were affected by the attack. APP related that Eastern...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...