Why Healthcare Security Matters

ronjor · Mar 18, 2023

You've been pwned, how much will each stolen customer SSN cost you? How about $7.5k?

Jessica Lyons Hardcastle Sat 18 Mar 2023
A Florida healthcare group has settled a class-action lawsuit after thieves stole more than 447,000 patients' names, Social Security numbers, and sensitive medical information, from its servers.
Click to expand...

hawki · Mar 29, 2023

"FDA requires medical devices be secured against cyberattacks

The Food and Drug Administration will now require medical devices meet specific cybersecurity guidelines after years of concerns that a growing number of internet-connected products used by hospitals and healthcare providers could be hit by hacks and ransomware attacks.

Under FDA guidance issued this week, all new medical device applicants must now submit a plan on how to “monitor, identify, and address” cybersecurity issues, as well as create a process that provides “reasonable assurance” that the device in question is protected. Applicants will also need to make security updates and patches available on a regular schedule and in critical situations, and provide the FDA with “a software bill of materials,” including any open-source or other software their devices use..."

https://us.cnn.com/2023/03/29/tech/fda-medical-devices-secured-cyberattacks

ronjor · Apr 14, 2023

Over 20,000 Iowa Medicaid Members Affected By Data Breach

Alessandro Mascellino 13 Apr 2023
The Iowa Department of Health and Human Services (HHS) in the US confirmed on Tuesday that the personal data of 20,800 Iowans who receive Medicaid was exposed due to a cyber-attack.
Click to expand...

hawki · May 15, 2023

"Data of 5.82M PharMerica patients stolen, accessed during cyberattack

More than 5.81 million patients tied to PharMerica have been notified that their data was accessed and stolen during a March cyberattack. The long-term care pharmacy solution provider reported the breach to the Office of the Maine Attorney General on May 12...

The forensics showed that threat actors accessed the provider’s systems for two days and exfiltrated patient data during the dwell time. The stolen data included patient names, contract information, Social Security numbers, prescriptions, and health insurance information..."

https://www.scmagazine.com/news/ransomware/5-82m-pharmerica-patients-stolen-accessed-cyberattack

FanJ · May 22, 2023

Eyes : Luxottica confirms 2021 data breach after info of 70M leaks online

Bleepingcomputer - May 19, 2023
https://www.bleepingcomputer.com/ne...1-data-breach-after-info-of-70m-leaks-online/

"Luxottica has confirmed one of its partners suffered a data breach in 2021 that exposed the personal information of 70 million customers after a database was posted this month for free on hacking forums.

Luxottica is the world’s largest eyewear company, glasses, and prescription frames maker, and the owner of popular brands like Ray-Ban, Oakley, Chanel, Prada, Versace, Dolce and Gabbana, Burberry, Giorgio Armani, Michael Kors, and many other. The company also operates Eyemed, a vision insurance company in the US."

See also https://haveibeenpwned.com/PwnedWebsites#Luxottica

..........

ronjor · May 24, 2023

Apria Healthcare says potentially 2M people caught up in IT security breach

Jessica Lyons Hardcastle Tue 23 May 2023
Took two years to tell us 'small number of emails' accessed
Personal and financial data describing almost 1.9 million Apria Healthcare patients and employees may have been accessed by crooks who breached the company's networks over a series of months in 2019 and 2021.
Click to expand...

ronjor · Jun 1, 2023

Criminals spent 10 days in US dental insurer's systems extracting data of 9 million

Jude Karabus Wed 31 May 2023
LockBit gang claimed 'trophy' of spilling low income families' details. Their parents must be proud
Click to expand...

ronjor · Jun 17, 2023

FTC accuses genetic testing company of exposing sensitive health data

By Tonya Riley June 16, 2023
The Federal Trade Commission on Friday accused the genetic health testing firm 1health.io of failing to protect sensitive genetic and health data, the latest in a series of FTC enforcement actions focused on health data privacy and the first involving genetic information.
Click to expand...

ronjor · Jul 17, 2023

Electronic Health Records Vendor NextGen Healthcare Inc. to Pay $31 Million to Settle False Claims Act Allegations

Friday, July 14, 2023
NextGen Healthcare Inc. (NextGen), an electronic health record (EHR) technology vendor, has agreed to pay $31 million to resolve allegations that NextGen violated the False Claims Act (FCA) by misrepresenting the capabilities of certain versions of its EHR software and providing unlawful remuneration to its users to induce them to recommend NextGen’s software.
Click to expand...

ronjor · Jul 27, 2023

US government contractor says MOVEit hackers accessed health data of ‘at least’ 8 million individuals

Carly Page@carlypage_ / July 27, 2023
U.S. government services contracting giant Maximus has confirmed that hackers exploiting a vulnerability in MOVEit Transfer accessed the protected health information of as many as 11 million individuals.
Click to expand...

Virginia-based Maximus contracts with federal, state, and local governments to manage and administer government-sponsored programs, such as Medicaid, Medicare, healthcare reform, and welfare-to-work.
Click to expand...

ronjor · Aug 3, 2023

Brit healthcare body rapped for WhatsApp chat sharing patient data

Jude Karabus Thu 3 Aug 2023
Time for a proper secure clinical image transfer system, perhaps?
Staff at NHS Lanarkshire - which serves over half a million Scottish residents - used WhatsApp to swap photos and personal info about patients, including children's names and addresses.
Click to expand...

ronjor · Aug 10, 2023

What Doctors Wish You Knew About HIPAA and Data Security

Julie Charnet Aug 8, 2023
Think US health data is automatically kept private? Think again.
Click to expand...

stapp · Aug 14, 2023

The Colorado Department of Health Care Policy & Financing (HCPF) is alerting more than four million individuals of a data breach that impacted their personal and health information.
Click to expand...

The data breach was possible after Clop ransomware exploited the MOVEit Transfer zero-day (CVE-2023-34362) in a hacking campaign that impacted hundreds of organizations worldwide.
HCPF clarifies that while their systems weren't directly compromised, the data exposure occurred through IBM, their contractor, which utilized the MOVEit software.
Click to expand...

https://www.bleepingcomputer.com/ne...-million-of-data-stolen-in-ibm-moveit-breach/

xxJackxx · Aug 14, 2023

ronjor said: ↑

What Doctors Wish You Knew About HIPAA and Data Security
Click to expand...

Interesting article. I think a lot of folks misunderstand how some of this works.

ronjor · Aug 18, 2023

Our health care system may soon receive a much-needed cybersecurity boost

Lily Hay Newman, wired.com - 8/18/2023
“Currently, off-the-shelf software tools fall short in detecting emerging cyber threats and protecting our medical facilities, resulting in a technical gap we seek to bridge with this initiative,” Arpa-H director Renee Wegrzyn said in a statement.
Click to expand...

“The Digiheals project comes when the US health care system urgently requires rigorous cybersecurity capabilities to protect patient privacy, safety, and lives.”
Click to expand...

ronjor · Aug 31, 2023

60 percent of healthcare industry cyber incidents impact patient care

By Ian Barker 30 Aug 2023
A new survey from Claroty of 1,100 cybersecurity, engineering, IT, and networking professionals from healthcare organizations finds 78 percent of respondents experienced a minimum of one cybersecurity incident over the last year.
Click to expand...

ronjor · Nov 15, 2023

Digital pharmacy startup Truepill says hackers accessed sensitive data of 2.3 million patients

Carly Page@carlypage_ November 15, 2023
Truepill, a digital health startup that provides pharmacy fulfillment services for healthcare organizations, has confirmed that hackers accessed the personal data of more than 2.3 million patients.
Click to expand...

ronjor · Nov 19, 2023

More than 330,000 Medicare recipients affected by MOVEit breach

Jonathan Greig November 17th, 2023
In the latest disclosures related to a Russian ransomware gang’s exploitation of the popular MOVEit file transfer service, a federal government agency revealed that more than 330,000 Medicare recipients were affected in a leak of sensitive data.
Click to expand...

ronjor · Dec 6, 2023

Millions of patient scans and health records spilling online thanks to decades-old protocol bug

Carly Page@carlypage_ / December 6, 2023
Researchers say they found exposed patient imaging, as well as names, addresses, and phone numbers
Click to expand...

ronjor · Dec 6, 2023

Fresenius Medical Care says data on 500,000 people stolen in U.S.

By Ludwig Burger December 6, 2023
FRANKFURT, Dec 6 (Reuters) - Dialysis group Fresenius Medical Care (FMEG.DE) said on Wednesday that data including medical records on 500,000 patients and former patients were stolen from a U.S. subsidiary's data warehouse.
Click to expand...

ronjor · Dec 8, 2023

OCR Imposes First HIPAA Penalty in a Phishing Attack Investigation

Posted By Steve Alder on Dec 7, 2023
The HHS’ Office for Civil Rights (OCR) has agreed to settle a landmark cyber investigation and has imposed its first financial penalty under the Health Insurance Portability and Accountability Act (HIPAA) to resolve Security Rule violations related to a phishing attack.
Click to expand...

ronjor · Dec 15, 2023

Editorial: 7 Ways AI Can be Used by Hackers to Steal Healthcare Data

Posted By Steve Alder on Oct 13, 2023
Artificial Intelligence (AI) is transforming the delivery of healthcare in the United States. It is also responsible for one of the biggest threats to the delivery of healthcare in the United States – the theft of healthcare data.
Click to expand...

ronjor · Dec 18, 2023

Delta Dental Says Data Breach Exposed 7 Million Customers

By Ionut Arghire December 18, 2023
Delta Dental of California says over 6.9 million individuals were impacted by a data breach caused by the MOVEit hack.
Click to expand...

ronjor · Jan 10, 2024

After Barrage of Hacks, Hospitals Will Face New Federal Cybersecurity Rules Tied to Funding

Eric Geller 01/09/24
The requirements will include using multi-factor authentication, which adds an extra login step after the traditional password, and operating a program to fix software vulnerabilities within a set amount of time after they are discovered. The senior administration official said basic security practices like these “really do shut the door to most of our cyber incidents.”
Click to expand...

ronjor · Feb 17, 2024

Security Breaches in Healthcare in 2023

Posted By Steve Alder on Jan 31, 2024
An unwanted record was set in 2023 with 725 large security breaches in healthcare reported to the Department of Health and Human Services (HHS) Office for Civil Rights (OCR), beating the record of 720 healthcare security breaches set the previous year. Aside from 2015, the number of reported security breaches in healthcare has increased every year although the rate of increase is slowing and 2024 could see the healthcare industry start to turn the corner.
Click to expand...

Log in or Sign up

Why Healthcare Security Matters

ronjor Global Moderator

hawki Registered Member

ronjor Global Moderator

hawki Registered Member

FanJ Updates Team

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

stapp Global Moderator

xxJackxx Registered Member

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

Log in or Sign up

Why Healthcare Security Matters

ronjor Global Moderator

hawki Registered Member

ronjor Global Moderator

hawki Registered Member

FanJ Updates Team

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

stapp Global Moderator

xxJackxx Registered Member

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

Useful Searches