Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

UMMC sued after pharmacist allegedly hacked computers to spy on women
The academic medical center is accused of deploying lax security protocols that allowed an employee to access internet-connected cameras and private emails in acts of privacy invasion that lasted a decade.
Oracle Health denies cloud breached as second attack confirmed
Questions remain about the alleged breach on a legacy server at Oracle Health, as the nature of the attacks and scope of stolen data are still being investigated.
Data breach at Oracle Health leads to extortion of hospitals
A legacy server accessed with stolen credentials is being blamed for the incident. However, the nature and scope of the attack are still being investigated, with Oracle reportedly working with the FBI to gather details.
Change Healthcare files to have federal lawsuits dismissed
There are at least 65 consolidated cases pending in federal courts that stem from the 2024 data breach on the claims processor's network. A judge in Minnesota has asked that the lawsuits be coordinated and consolidated as much as possible.
ISIS is not launching terrorist attacks against hospitals, FBI says
Trade groups released a statement denying the claim's credibility, but they fear some may be inspired by a widely shared social media post.

Lawyer: Court decision over website trackers has ‘zero impact on patient privacy’

The U.S. Department of Health and Human Services has opted not to appeal a federal court decision that partially repealed the agency’s ban on website trackers.

money cybersecurity ransomware health IT data breach hacker

McLaren recovering from ransomware attack, unclear about data security

McLaren said it will still take time to update patient records, as it has been manually charting during the weeks-long outage.

Maryland hospital settles ransomware lawsuit for $2.25M

Atlanta General Hospital does not admit wrongdoing. However, it has agreed to settle a class-action lawsuit brought by victims of a January 2023 data breach.

Hospital hacker extradited to U.S., facing charges for extortion and fraud

Deniss Zolotarjovs, 33, of Moscow, is allegedly a member of Karakurt, responsible for multiple U.S. hospital breaches, which included data being sold on the dark web.

McLaren confirms it was hit with ransomware; disruptions to last until September

The Michigan-based health system is not sure what data may have been taken during the breach. An investigation is ongoing.

Alabama security breach exposes personal information of cardiologists, heart patients

Both patients and physicians were impacted by the incident, with outside forces gaining access to everything from names and social security numbers to banking information.

Hospital system in Michigan hit by cyberattack for second time in a year

McLaren Health Care said it is not sure if patient data was taken by hackers and it’s working with a cybersecurity firm to gather details.

Around the world, healthcare still pays more than any other sector for data breaches

No industry has taken cybercrime on the chin more than healthcare over the past 13 years. That trend continues in 2024, as global data breaches cost healthcare $9.77 million between March 2023 and February 2024.

Cybersecurity

UMMC sued after pharmacist allegedly hacked computers to spy on women

Oracle Health denies cloud breached as second attack confirmed

Data breach at Oracle Health leads to extortion of hospitals

Change Healthcare files to have federal lawsuits dismissed

ISIS is not launching terrorist attacks against hospitals, FBI says