Tag: healthcare
-
Ascension Notifying 5.6 Million Affected by Ransomware Hack
by
in SecurityNewsMissouri-Based Hospital Chain Initially Reported That Attack Affected Only 500. Seven months after a ransomware disrupted its IT systems for weeks, Catholic hospital chain Ascension Health is now notifying nearly 5.6 million current and former patients and employees that the incident – which also involved data theft – potentially compromised their information. First seen on…
-
Romanian Sentenced to 20 Years for NetWalker Ransomware
by
in SecurityNewsDaniel Hulea Orchestrated Attacks Targeting Businesses During the COVID-19 Pandemic. A U.S. federal court sentenced a Romanian man to 20 years in a U.S. prison for his role in Netwalker ransomware attacks including against healthcare and education sectors during the novel coronavirus pandemic, extorting millions of dollars from victims worldwide. First seen on govinfosecurity.com Jump…
-
Romanian Netwalker ransomware affiliate sentenced to 20 years in US prison
by
in SecurityNewsDaniel Christian Hulea admitted to earning up to $21.5 million from attacks carried out by Netwalker, a group known for targeting the healthcare sector during the COVID-19 pandemic.]]> First seen on therecord.media Jump to article: therecord.media/romanian-netwalker-sentenced-prison-twenty
-
Ransomware attack on health giant Ascension hits 5.6 million patients
by
in SecurityNewsThe cyberattack on Ascension ranks as the third-largest healthcare-related breach of 2024. First seen on techcrunch.com Jump to article: techcrunch.com/2024/12/20/ransomware-attack-on-health-giant-ascension-hits-5-6-million-patients/
-
Ascension: Health data of 5.6 million stolen in ransomware attack
by
in SecurityNewsAscension, one of the largest private U.S. healthcare systems, is notifying over 5.6 million patients and employees that their personal and health data was stolen in a May cyberattack linked to the Black Basta ransomware operation. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/ascension-health-data-of-56-million-stolen-in-ransomware-attack/
-
Change Healthcare breach prompts Nebraska lawsuit
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/change-healthcare-breach-prompts-nebraska-lawsuit
-
SailPoint Buys Imprivata IGA Assets to Boost Healthcare
by
in SecurityNewsIdentity Governance Acquisition Expands SailPoint’s Healthcare Portfolio Globally. The acquisition of Imprivata’s identity governance portfolio marks a pivotal move for SailPoint in strengthening healthcare identity security globally, leveraging cloud solutions, exclusive partnerships and advanced SaaS offerings to address market complexities. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/sailpoint-buys-imprivata-iga-assets-to-boost-healthcare-a-27105
-
Healthcare in the Cross Hairs: Cybercriminals Have Found Another High-Value Target
by
in SecurityNewsHere at ColorTokens, we’ve recently been engaged with a leading cancer center to improve its cybersecurity posture. After phase one of the deployment, they shared with us that the benefit they derived is gaining the peace of mind that their “critical digital operations have the resilience they need to continue to seamlessly deliver patient care……
-
NYDOH Cybersecurity Regulations: What Healthcare Providers Need to Know in 2025
by
in SecurityNews10 NYCRR 405.46: NY’s New Hospital Cyber Regulation Hospitals are no strangers to health data privacy laws like HIPAA. But New York’s new cybersecurity regulations take things to the next level. Finalized by the New York State Department of Health (NYDOH) in October 2024, these laws aim to fill gaps left by existing frameworks. They……
-
Is Your Hospital Sharing Patient Data with Facebook? A Guide for Security and Privacy Teams
by
in SecurityNewsRecent lawsuits have revealed a critical privacy concern for healthcare providers the sharing of patient data with Facebook through tracking pixels. We wrote this article to help your security and privacy teams assess their risk, identify key stakeholders, and understand the urgency of this issue. What is the risk? Many hospitals use Meta Pixel,…The post…
-
Managing Risks: Executive Protection in the Digital Age
by
in SecurityNewsThe recent incident involving the United Healthcare CEO has sparked critical conversations in corporate boardrooms about the evolving threat landscape and the importance of robust security measures centered around executive protection. The incident has illuminated a stark and unsettling reality: the threat landscape for senior executives is evolving in ways that demand immediate attention and……
-
Nebraska sues Change Healthcare over security failings that led to medical data breach of over 100 million Americans
by
in SecurityNewsNew details emerged about the Change Healthcare ransomware attack in Nebraska’s complaint. First seen on techcrunch.com Jump to article: techcrunch.com/2024/12/18/nebraska-sues-change-healthcare-over-security-failings-that-led-to-medical-data-breach-of-over-100-million-americans/
-
Achieving Stability in Cloud Compliance and Security
by
in SecurityNewsCan Cybersecurity Truly Achieve Stability in the Cloud? The increasing adoption of cloud technologies in various industries, from healthcare to financial services, makes the question of stability in cloud compliance and security a top priority. The cornerstone of achieving a stable security paradigm is understanding and managing Non-Human Identities (NHIs) effectively. As cybersecurity specialist with……
-
Regional Care Data Breach Impacts 225,000 People
by
in SecurityNewsHealthcare insurance firm Regional Care has disclosed a data breach impacting more than 225,000 individuals. The post Regional Care Data Breach Impacts 225,000 People appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/regional-care-data-breach-impacts-225000-people/
-
Key strategies to enhance cyber resilience
by
in SecurityNews
Tags: attack, awareness, backup, banking, breach, business, ceo, compliance, control, crowdstrike, cyber, cybersecurity, data, finance, government, group, healthcare, incident, incident response, infrastructure, insurance, metric, network, phishing, programming, ransom, ransomware, resilience, risk, security-incident, service, skills, software, strategy, supply-chain, technology, threat, training, update, vulnerability, windowsThe faulty CrowdStrike software update that triggered IT outages on a global scale in July was a sobering reminder of the importance of incident response and business continuity plans.The update caused more than eight million Windows devices to crash and take down with them airline reservation systems, hospital and government services, financial and banking applications…
-
Is Your Website Leaking Sensitive Patient Information to Facebook? A disturbing story about HIPAA (and How to Avoid It)
by
in SecurityNewsPicture this scenario: You’ve used every tool you have to secure your web pages and forms so patient information is safe. One day, a potential patient Googles “hysterectomy options” and ends up on your hospital’s website. They browse around, maybe even schedule an appointment online. You have no reason to worry, right? Because you’ve done…The…
-
Nebraska AG sues Change Healthcare, UnitedHealth for data theft after ransomware attack
by
in SecurityNewsThe 29-page filing alleges violations of Nebraska’s consumer protection and data security laws and says Change Healthcare, which is owned by UnitedHealth Group (UHG), failed to implement proper security measures that exacerbated the data breach, disrupting critical healthcare services across the state.]]> First seen on therecord.media Jump to article: therecord.media/nebraska-ag-sues-change-healthcare-unitedhealth-after-ransomware-attack
-
Nebraska AG Files 1st State Lawsuit in Change Health Breach
by
in SecurityNewsMore States Likely To Push Similar Legal Claims Against Change Healthcare and UHG. UnitedHealth Group is facing scores of proposed class action lawsuits involving the massively disruptive cyberattack and mega data breach at its Change Healthcare IT services unit this year. But now the company faces the first in what will likely be many more…
-
Next-gen cybercrime: The need for collaboration in 2025
by
in SecurityNews
Tags: ai, attack, awareness, cloud, crime, crimes, cyber, cyberattack, cybercrime, cybersecurity, defense, exploit, framework, group, healthcare, infrastructure, intelligence, risk, service, strategy, tactics, technology, threat, training, vulnerabilityCybercrime is a relentless and evolving threat to organizations worldwide. However, with the right insights, we can significantly enhance our security, mitigate risks, and stay ahead of these criminals.FortiGuard Labs’ Cyberthreat Predictions for 2025 report is designed to provide exactly these insights. It identifies emerging threat trends for the coming year and offers actionable guidance…
-
10 Major Ransomware Attacks And Data Breaches In 2024
by
in SecurityNewsMajor ransomware attacks and data breaches in 2024 included the Change Healthcare attack, data theft attacks targeting Snowflake customers and the China-linked Salt Typhoon campaign against U.S. government officials. First seen on crn.com Jump to article: www.crn.com/news/security/2024/10-major-ransomware-attacks-and-data-breaches-in-2024
-
Healthcare Cybersecurity: 2024 Was Tough, 2025 May Be Better
by
in SecurityNews2024 was a difficult year for healthcare cybersecurity, but there are some hopeful signs heading into 2025, with effective controls and new rules coming. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/healthcare-cybersecurity-trends-of-2024/
-
ConnectOnCall Data Breach, 900,000 Customers Data Exposed
by
in SecurityNewsThe healthcare communication platform ConnectOnCall, operated by ConnectOnCall.com, LLC, has confirmed a significant data breach that compromised the personal information of 900,000 patients and healthcare providers. The platform, designed to streamline after-hours communications between patients and healthcare providers, discovered the breach in May of this year. The breach was identified onMay 12, 2024, prompting an…
-
ConnectOnCall data breach impacted over 900,000 individuals
by
in SecurityNewsConnectOnCall disclosed a data breach impacting over 900,000 individuals, exposing their personal information. ConnectOnCall is a telehealth platform and after-hours on-call answering service designed to enhance communication between healthcare providers and patients. It offers automated patient call tracking, HIPAA-compliant chat, and integrates with electronic health record (EHR) systems to streamline after-hours calls and care coordination.…
-
ConnectOnCall breach exposes health data of over 910,000 patients
by
in SecurityNewsHealthcare software as a service (SaaS) company Phreesia is notifying over 910,000 people that their personal and health data was exposed in a May breach of its subsidiary ConnectOnCall. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/connectoncall-breach-exposes-health-data-of-over-910-000-patients/
-
Navigating HIPAA Compliance When Using Tracking Technologies on Websites
by
in SecurityNewsWebsites have become indispensable tools for healthcare organizations to connect with patients, streamline operations, and enhance service delivery. Modern websites are composed of components that “build” unique user experiences in real time.However, the use of tracking technologies on these websites presents unique challenges in complying with the Health Insurance Portability and Accountability Act of 1996…The…
-
Build Your Confidence in Secrets Sprawl Management
by
in SecurityNewsCan You Truly Be Confident in Your Approach to Secrets Management? Cybersecurity is a crucial element in today’s digital landscape, but how can organizations ensure they’re confidently managing their non-human identities and secrets? This is a question that many professionals have, regardless of their industry, be it finance, healthcare, travel, or a DevOps and… First…
-
Empower Your SOC Teams with Cloud-Native Security Solutions
by
in SecurityNewsCan Cloud-Native Security Be a Game-Changer for Your SOC Teams? In today’s complex digital landscape, organizations are increasingly challenged to protect their data while ensuring compliance with evolving cybersecurity regulations. From finance to healthcare, businesses are recognizing the need for a more comprehensive approach to securing machine identities, especially Non-Human Identities (NHIs). Could effective NHI……
-
Time of Reckoning Reviewing My 2024 Cybersecurity Predictions
by
in SecurityNews
Tags: ai, attack, automation, awareness, breach, business, chatgpt, china, compliance, cyber, cyberattack, cybercrime, cybersecurity, data, data-breach, disinformation, election, espionage, exploit, healthcare, incident response, infrastructure, jobs, law, linkedin, malware, monitoring, moveIT, phishing, privacy, ransomware, regulation, risk, russia, service, software, supply-chain, technology, threat, tool, ukraine, update, vulnerability, warfare, zero-dayThe brutal reality is that cybersecurity predictions are only as valuable as their accuracy. As 2024 comes to a close, I revisit my forecasts to assess their utility in guiding meaningful decisions. Anyone can make predictions (and far too many do), but actually being correct is another matter altogether. It is commonplace for security companies…