Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

Study finds big hospitals overpaid, rural facilities overlooked in Change Healthcare relief
Researchers from University of Minnesota found that more than 300 small, rural hospitals didn't even apply for relief. At the same time, many larger, for-profit systems received hundreds of thousands in overpayments. The findings are published in Health Affairs.
Cardiologists join chorus of voices urging Trump administration to kill cybersecurity proposal
The proposal, first announced by the Biden administration, was developed to improve patient data security. Those opposed argue that it would significantly increase costs and create a logistical nightmare for hospitals and health systems throughout the country.
Kaiser Permanente agrees to $46M settlement over data incident affecting 13.4M people
The managed care company does not admit to doing anything wrong. The data breach constituted its use of third-party tracking technology on its website, which shared data with Google, Microsoft, Twitter, Meta and others.
Nebraska’s lawsuit against Optum and Change Healthcare can move forward, judge rules
The UnitedHealth Group subsidiaries had attempted to have the case dismissed. However, a court rejected the motion. Nearly half of Nebraskans were impacted by the infamous February 2024 data breach on Change Healthcare.
Cybersecurity researcher provides more details on $200K ransom pinned on Doctor Alliance
The outlet DataBreaches.net was able to gather more details on the alleged hack of the healthcare billing automation platform, said to be perpetrated by a notorious cybercriminal.

Cybercrime Cybercriminals Syndicate Group Gang

Community hospital in Colorado thwarts ransomware attack, says patient data is safe

Family West Health, a 25-bed facility, said it spotted a cyberattack this week that forced it to shut down IT systems. However, it confirmed patient care was not impacted.

Cyberattack forces Massachusetts hospital into ‘Code Black’

A “cybersecurity incident” at Heywood Healthcare forced it to halt all emergency services at one of its hospitals. Details on what happened remain largely unclear.

Assisted-living facilities in Florida, Alabama hit with cyberattack that impacted 26,000

The incident at Methodist Homes is now over a year old but was only recently disclosed to the public. The nature of the data breach remains unknown; however, it has been confirmed that hackers accessed protected health information.

HLTH 25 in Las Vegas: News roundup from the annual conference

The 2025 HLTH convention in Las Vegas, held at the Venetian Expo Center, brought together vendors, researchers and healthcare providers for four days of presentations, panels, awards and industry announcements. Here's a selection of news from the show floor.

$30M settlement reached in data breach affecting 2.4M patients

The ransomware attack on Integris Health, a nonprofit health system in Oklahoma, happened in late 2023. Victims of the breach said they were extorted by hackers directly.

cybersecurity cyberattack hack hackers lock protection

72% of healthcare organizations say cyberattacks caused care delays, longer hospital stays

In a new report, Proofpoint and the Ponemon Institute surveyed 677 health IT professionals to understand the impact cybersecurity incidents have on patient care.

cybersecurity hacker ransomware cyber data breach

FDA announces recall for Johnson & Johnson devices due to cybersecurity risk—customers urged to act

The FDA and Johnson & Johnson MedTech are telling customers to keep the devices in a secure environment until they can be disabled from all networks.

AI-driven medical benefits servicer hit with data breach

Healthcare Interactive confirmed the cyberattack in a statement released last week; however the details have yet to be reported to HHS. The incident happened in July.

Cybersecurity

Study finds big hospitals overpaid, rural facilities overlooked in Change Healthcare relief

Cardiologists join chorus of voices urging Trump administration to kill cybersecurity proposal

Kaiser Permanente agrees to $46M settlement over data incident affecting 13.4M people

Nebraska’s lawsuit against Optum and Change Healthcare can move forward, judge rules

Cybersecurity researcher provides more details on $200K ransom pinned on Doctor Alliance