Healthcare Information Security

Phishing Attacks

Phishing Education, Training Can Reduce Healthcare Cyber Risk

March 15, 2019 - The healthcare sector is uniquely vulnerable to phishing attacks, due to high employee turnover and influx of new employees who may lack previous cybersecurity training, according to a new report published in the Journal of the American Medical Association. William Gordon, MD of Harvard Medical School and Boston’s Brigham and Women’s Hospital led a team of researchers to...


More Articles

326,000 Patients Impacted in UConn Health Phishing Attack

by Jessica Davis

A phishing attack on UConn Health potentially breached some personal and medical data of 326,000 patients, the Connecticut-based health system announced on Friday. UConn Health recently discovered a hacker accessed a number of employee...

United Hospital District Reports June 2018 Breach from Phishing Attack

by Jessica Davis

Minnesota-based United Hospital District is notifying 2,143 patients that their data was compromised during a June 2018 phishing attack. According to officials, the breach occurred for about two weeks from June 10 and June 27, 2018. The...

Email Fraud Attacks on Healthcare Jumped 473% Since 2017

by Jessica Davis

Email fraud attacks on the healthcare sector increased by a whopping 473 percent between the first quarter of 2017 and the fourth quarter of 2017, according to a new report from Proofpoint. Proofpoint analyzed over 160 billion emails sent...

Phishing, Negligent Insiders Leave Healthcare Vulnerable, HIMSS says

by Jessica Davis

The healthcare sector is continuing to make positive improvements around cybersecurity, with many allocating more budgets to shore up threats. However, legacy systems and failure to perform phishing tests “raise grave concerns”...

Phishing Hack Breaches PHI of 23,000 Colorado Patients for 3 Months

by Jessica Davis

Colorado-based Critical Care, Pulmonary & Sleep Associates recently notified 23,000 patients that their personal data was potentially breached during a phishing attack. On November 23, CCPSA officials discovered a hacker gained access...

Phishing Attack on Verity Health Breaches Patient Data

by Jessica Davis

Verity Health System and Verity Medical Foundation are notifying patients that their data was potentially breached by two separate phishing attacks. According to officials, one cyberattack occurred in November and the other in...

Credential Compromise Top Goal of Phishing Attacks in 2018

by Jessica Davis

Phishing attacks exploded in 2018, with hackers leveraging the attacks in hopes to score the credentials from their victims, according to a new report from Proofpoint researchers. Compromising credentials as the goal of phishing attacks...

Phishing Attack Hits Kent County Community Mental Health

by Jessica Davis

Kent County Community Mental Health Authority is notifying 2,284 patients that their data was potentially breached after several phishing attacks. According to officials, three employees fell victim to targeted phishing campaigns on...

New Phishing Tool Bypasses Two-Factor Authentication

by Jessica Davis

A security researcher recently released a hacking tool that takes phishing attacks to a whole new level: It both automates phishing attacks and breaks through two-factor authentication functions with ease. Modlishka was created by Piotr...

Third-Party Vendor Phishing Attack Breaches 31,000 Patient Records

by Jessica Davis

Managed Health Services of Indiana Health Plan is notifying about 31,000 patients of a potential breach to their personal data, caused by a phishing attack on a business associate. According to officials, several employees of LCP...

Feds Start Cybersecurity Campaign on Foreign Risks to Private Sector

by Jessica Davis

The National Counterintelligence and Security Center launched its Know Your Risk, Raise Your Shield campaign on Monday, to drive awareness around the increasing risk of foreign cyberattacks on the private sector. The cybersecurity...

New Stealthy Russian Hacking Tool Targets Government Agencies

by Jessica Davis

A new Russian hacking tool is targeting government systems in the United States and Europe through spear-phishing attacks, using stealthy, sophisticated mechanisms to go undetected. Discovered by Palo Alto Networks, the...

VUMC Fights Healthcare Phishing with Multi-Factor Authentication

by Jessica Davis

The healthcare sector has remained a primary target for phishing attacks in recent years, with highly targeted viruses like SamSam and Ryuk wreaking havoc on the industry. In fact, one in every hundred emails sent globally has malicious...

MNIT Commissioner Faces Legislative Scrutiny Over Phishing Attacks

by Fred Donovan

Minnesota IT Services (MNIT) Commissioner Johanna Clyborne faced criticism for the four-month delay in informing victims of two phishing attacks that exposed PHI and other personal information on 20,800 clients of the Minnesota Department...

PHI on 37K at Risk in Gold Coast Health Plan Phishing Attack

by Fred Donovan

California-based Gold Coast Health Plan (GCHP) reported to OCR Oct. 5 that a phishing attack exposed PHI on 37,005 individuals. In a Oct. 8 news release, GCHP said that attackers compromised an employee’s email account,...

‘Payment Notification’ Is Top Healthcare Phishing Attack Subject

by Fred Donovan

The term “Payment Notification” is the top healthcare phishing attack subject, appearing in 58 percent of healthcare phishing attack campaigns in 2018, according to the latest data from Cofense. Other popular subjects in...

Hacker Steals 124 PHI-Laden Emails in Aspire Phishing Attack

by Fred Donovan

Aspire Health, a Nashville-based in-home healthcare provider, suffered a phishing attack on Sept. 3 in which a hacker gained access to its internal email system earlier this month, according to court documents cited by...

HHS Still Leads in DMARC Implementation To Stop Phishing Attacks

by Fred Donovan

With the Oct. 16 deadline looming, HHS continues to lead in securing the most domains of any federal agency as part of the DMARC protocol implementation, which is designed to prevent phishing attacks from succeeding. As of Sept. 14, HHS...

Healthcare Lags Other Industries in Phishing Attack Resiliency Rate

by Fred Donovan

Healthcare trails other major industries in its phishing attack resiliency rate, which measures the ratio between people who report a phish versus those who fall victim to one, according to a report released Sept. 17 by Cofense. The...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...