Attorneys with the American Civil Liberties Union (ACLU) of Rhode Island filed a class-action lawsuit against the Rhode Island Public Transit Authority (RIPTA) and UnitedHealthcare (UHC) New England...
The Daixin Team ransomware and data extortion group is an active threat to the healthcare sector, The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and...
Water, K-12 education, and healthcare cybersecurity are upcoming focus areas for the Cybersecurity and Infrastructure Security Agency (CISA), Director Jen Easterly said at Mandiant’s mWISE...
Over the last few years, the need for cybersecurity professionals has been multiplying. Yet, the demand is outpacing talent availability amid a cybersecurity workforce shortage,...
As a result of an investigation into a 2020 healthcare data breach, vision insurer EyeMed Vision Care will pay a $4.5 million penalty to New York State for violating the Department of Financial...
Enabling multi-factor authentication (MFA) is “the single most important thing Americans can do to stay safe online,” Cybersecurity and Infrastructure Security Agency (CISA) Director Jen...
Ransomware attacks against healthcare organizations have been increasing and wreaking havoc for the last several years. These threats lead to disruptions for patients and providers, with 86 percent of...
New healthcare cybersecurity standards and guidance from the White House are on the horizon, Anne Neuberger, deputy national security advisor for cyber and emerging technology in the Biden...
United Health Centers (UHC) of the San Joaquin Valley reached a proposed class-action settlement agreement to resolve allegations surrounding an August 2021 data breach.
UHC’s notice to the...
Healthcare, like any other industry, is increasingly relying on internet-connected devices to facilitate day-to-day operations and workflows.
The interconnectedness of healthcare means that security...
Threat actors are continuously leveraging legitimate tools such as Cobalt Strike, Mimikatz, and PowerShell to conduct cyberattacks that pose threats to healthcare cybersecurity, the HHS Health Sector...
A Canadian man is facing 20 years in prison for his role in a variety of NetWalker ransomware attacks, including attacks against the healthcare sector during the COVID-19 pandemic. Sebastian...
Baltimore-based health system LifeBridge Health agreed to pay $9.5 million to settle a healthcare data breach lawsuit. The lawsuit stemmed from a breach initially disclosed in May 2018.
In May 2018,...
Two zero-day vulnerabilities are being actively exploited in Microsoft Exchange Servers 2013, 2016, and 2019, and may impact healthcare cybersecurity.
The first vulnerability (CVE-2022-41040) is a...
President Biden designated October as Cybersecurity Awareness Month and encouraged the public and private sectors to take immediate action to protect against cyber threats in a White House press...
The American Hospital Association (AHA) expressed its support for the Healthcare Cybersecurity Act (S.3904/H.R.8806) in a letter by AHA Executive Vice President Stacey Hughes to US Representatives...
In a recent audit, The HHS Office of Inspector General (OIG) found that the National Institutes of Health (NIH) had not implemented adequate requirements to ensure that its grant awards had risk-based...
Humana disclosed a third-party data breach to the Maine Attorney General’s Office that impacted 22,767 individuals. The breach originated at Choice Health, which sells Medicare products on...
Standard approaches to operational technology (OT) and industrial control system (ICS) security “do not adequately address current threats,” the Cybersecurity and Infrastructure Security...
Long-running Chinese state-sponsored threat group APT41 continues to pose a danger to healthcare cybersecurity, the HHS Health Sector Cybersecurity Coordination Center (HC3) suggested in a recent...
