Standard approaches to operational technology (OT) and industrial control system (ICS) security “do not adequately address current threats,” the Cybersecurity and Infrastructure Security...
Long-running Chinese state-sponsored threat group APT41 continues to pose a danger to healthcare cybersecurity, the HHS Health Sector Cybersecurity Coordination Center (HC3) suggested in a recent...
The US Food and Drug Administration (FDA) warned the sector of healthcare cybersecurity risks associated with the Medtronic MiniMed 600 Series Insulin Pump System that could jeopardize patient...
The Health Sector Cybersecurity Coordination Center (HC3) warned the healthcare sector of a new monkeypox-themed phishing scheme targeting healthcare providers.
Threat actors are using the latest...
California-based Ambry Genetics reached a $12.25 million settlement to resolve a healthcare data breach lawsuit. The clinical genomic diagnostics vendor suffered a breach in January 2020 that impacted...
The Federal Bureau of Investigation (FBI) released its second private industry notification in a single week directed at the healthcare sector, this time warning of social engineering techniques used...
Penetration (“Pen”) testing is a key tool in maintaining healthcare cybersecurity and identifying potential security gaps and vulnerabilities before threat actors can. Security firm...
Department of Health and Human Services (HHS) Secretary Xavier Becerra has officially sworn in Melanie Fontes Rainer as director of the Office for Civil Rights (OCR).
Since assuming the role...
The US Department of Justice (DOJ) charged three Iranian nationals with allegedly executing multiple ransomware attacks and other extortion schemes against US critical infrastructure entities,...
The Federal Bureau of Investigation (FBI) released a notice outlining the security and patient safety risks associated with unpatched and legacy medical devices.
The FBI has observed a recent uptick...
As emerging technologies continue to revolutionize patient care, organizations must also consider the healthcare cybersecurity implications that come along with them. The Health Sector Cybersecurity...
Four medical device security vulnerabilities are impacting certain Sigma and Baxter Spectrum infusion pumps, a Cybersecurity and Infrastructure Security Agency (CISA) explained in an advisory....
The Urology Center of Colorado (TUCC) reached a proposed settlement to resolve a class-action healthcare data breach lawsuit filed in the aftermath of a September 2021 breach that impacted 137,820...
Along with documented financial losses and reputational harm, healthcare cyberattacks may endanger patient safety and adversely impact care delivery.
With the goal of understanding how various...
UPDATED 9/7/2022 - This article has been updated to include a statement provided by the United Network for Organ Sharing (UNOS).
The Health Resources and Services Administration (HRSA), under HHS, has...
The Cybersecurity and Infrastructure Security Agency (CISA) released a medical device advisory outlining five vulnerabilities found in Contec Health’s CMS8000 CONTEC ICU CCU Vital Signs Patient...
When properly implemented, zero trust security strategies can help healthcare organizations bolster their security efforts. However, the sector faces unique challenges surrounding IoT devices and...
The Health Sector Cybersecurity Coordination Center (HC3) issued a threat profile about Evil Corp and warned that the prolific group could threaten healthcare cybersecurity.
The Russian-based...
The US Federal Trade Commission (FTC) sued data broker Kochava over its alleged sale of geolocation data, signifying the Commission’s commitment to cracking down on improper location and health...
LastPass, a password manager with 25 million users around the world, disclosed a data breach to its customers. After detecting unusual activity in early August, LastPass discovered that an unauthorized...