Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

Hospitals, Epic sued after clinician allegedly accesses nude photos of 400+ patients
According to lawyers representing two of the plaintiffs, a shared EHR portal was used by a physical therapist at KU Health to access the sensitive photographs in what is being investigated as a data breach.
DaVita kidney care clinics hit by ransomware attack
The company said part of its network has been encrypted. However, it told the Securities and Exchange Commission it is still able to deliver dialysis care to patients.
UnitedHealth garnishing claims to recoup ‘loans’ from Change Healthcare hack
UnitedHealth Group said it is seeking repayment of “interest-free” advances distributed to providers struggling during the shutdown of claims processing caused by the ransomware attack on Change Healthcare.
UMMC sued after pharmacist allegedly hacked computers to spy on women
The academic medical center is accused of deploying lax security protocols that allowed an employee to access internet-connected cameras and private emails in acts of privacy invasion that lasted a decade.
Oracle Health denies cloud breached as second attack confirmed
Questions remain about the alleged breach on a legacy server at Oracle Health, as the nature of the attacks and scope of stolen data are still being investigated.

Data breaches cost an average of $10M

Breach costs have risen 13% over the last two years, and the increase could be passing down through the economy, influencing higher prices for goods and services.

Patient privacy concerns are rising

92% of patients believe privacy is a right and their health data should not be available for purchase by corporations or other individuals.

SIIM 2022: 7 ways to be ever-prepared for cyberattack

Some decisions after a cyberattack are reactive and made on the fly, but imaging operations can take a number of steps ahead of time to plan for unplanned downtime and limit the impact of a temporary outage.

FDA issues a cybersecurity warning: DNA sequencing software is vulnerable to attacks

While there haven’t been any reports of a cybersecurity threat, the vulnerability could allow an unauthorized user to take control of the medical device remotely, alter settings on the systems and even impact patient test results, according to the FDA.

Cardiologist allegedly created and sold ransomware tools to hackers

One of the cardiologist's creations, "Thanos," allowed his clients to develop their own ransomware software and rent it out to other criminals.

Health data breaches increased three-fold in 2021

Health data breaches were on the rise last year, leaving millions of Americans’ sensitive health information exposed.

Electronic health records susceptible to cyberattacks, HHS warns

Despite their benefits, EHRs are vulnerable to a variety of cyberthreats, including malware and ransomware attacks, according to a Health and Human Services brief.

Pandemic has opened doors for telehealth, but security concerns could narrow the space

More than half of Americans, 54%, have seen doctors remotely during the COVID crisis. However, some 48% might not touch telehealth again if their data were to get hacked during a telehealth-related breach.

Cybersecurity

Hospitals, Epic sued after clinician allegedly accesses nude photos of 400+ patients

DaVita kidney care clinics hit by ransomware attack

UnitedHealth garnishing claims to recoup ‘loans’ from Change Healthcare hack

UMMC sued after pharmacist allegedly hacked computers to spy on women

Oracle Health denies cloud breached as second attack confirmed