Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

UMMC sued after pharmacist allegedly hacked computers to spy on women
The academic medical center is accused of deploying lax security protocols that allowed an employee to access internet-connected cameras and private emails in acts of privacy invasion that lasted a decade.
Oracle Health denies cloud breached as second attack confirmed
Questions remain about the alleged breach on a legacy server at Oracle Health, as the nature of the attacks and scope of stolen data are still being investigated.
Data breach at Oracle Health leads to extortion of hospitals
A legacy server accessed with stolen credentials is being blamed for the incident. However, the nature and scope of the attack are still being investigated, with Oracle reportedly working with the FBI to gather details.
Change Healthcare files to have federal lawsuits dismissed
There are at least 65 consolidated cases pending in federal courts that stem from the 2024 data breach on the claims processor's network. A judge in Minnesota has asked that the lawsuits be coordinated and consolidated as much as possible.
ISIS is not launching terrorist attacks against hospitals, FBI says
Trade groups released a statement denying the claim's credibility, but they fear some may be inspired by a widely shared social media post.

Artivion, an Atlanta-based medical device company, has received a Humanitarian Device Exemption (HDE) from the U.S. Food and Drug Administration (FDA) for its AMDS Hybrid Prosthesis designed to treat DeBakey Type 1 dissections when malperfusion occurs. This HDE ensures select patients can be treated with the device before the FDA makes its final approval decision.

First surgical device of its kind granted key FDA exemption

This update helps ensure Artivion's AMDS Hybrid Prosthesis can be used to treat high-risk patients as the FDA makes its final approval decision. The news came as Artivion works to bounce back from a cybersecurity attack that occurred in November.

Study reveals shocking list of the most common corporate passwords

A cybersecurity firm found '123456' and '123456789' are the most common passwords used in the workplace after analyzing 2.5TB of data.

Healthcare hacker sentenced to 10 years in prison

Robert Purbeck, 45, of Georgia was found with data on more than 132,000 individuals taken from various breaches, including multiple providers, a police station and a city government.

Ransomware group deploys ticking clock to threaten Georgia hospital

Memorial Hospital and Manor announced the data breach through Facebook on Nov. 3. The cybercrime group Embargo has taken credit for the incident, claiming to have 1.15TB of stolen information.

Hackers were inside an Iowa hospital’s network for two weeks

St. Anthony Regional Hospital confirmed patient data was taken by cybercriminals, but the August incident is still being investigated.

Microsoft: Ransomware hit nearly 400 healthcare entities this year—a 300% rise since 2015

A study from Microsoft on the impact of ransomware found unaffected nearby hospitals see a rise in stroke and cardiac arrest cases, in addition to an influx of patients.

Feds make it official: Change data breach was the largest in healthcare history, impacting 100M

Updated reporting from HHS shows UnitedHealth Group's estimate that roughly one-third of people in the U.S. would be affected was correct.

CMS contractor takes $1.2M loss after data breach, DOJ lawsuit

Federal Data Solutions allegedly failed to encrypt screenshots of patient data, stored on a server being paid for with Medicare funds.

Cybersecurity

UMMC sued after pharmacist allegedly hacked computers to spy on women

Oracle Health denies cloud breached as second attack confirmed

Data breach at Oracle Health leads to extortion of hospitals

Change Healthcare files to have federal lawsuits dismissed

ISIS is not launching terrorist attacks against hospitals, FBI says