Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

AMA says Change Healthcare breach is crippling independent practices
A survey of physicians by the American Medical Association reveals that many practices are still losing revenue and struggling to make payroll as a result of the Change Healthcare hack.
Breached Change Healthcare server lacked multifactor authentication, UnitedHealth CEO admits
UnitedHealth CEO Andrew Witty told the Senate Finance Committee that systems have been rebuilt “from scratch” in light of the oversight.
Kaiser Permanente exposed data on 13.4 million members to tech companies
Tracking technologies sent patient information to advertisers such as Microsoft, Google and Meta.
Hackers were inside Change Healthcare’s systems 9 days before attack
UnitedHealth Group confirms hackers have personal data on “a substantial proportion of people in America."
Atrium Health sued for violating patient privacy, sharing data with Facebook and Google
In a court filing, the plaintiffs claim Atrium Health used Meta's Pixel code on its website, resulting in patients receiving targeted ads.

HHS warns healthcare providers of new ransomware threat

“Royal appears to be a private group without any affiliates while maintaining financial motivation as their goal,” HHS warns.

December 12, 2022

Cyberattack threats rise amid medical device growth

As healthcare devices become ever more digitally connected and network capabilities expand with new technology, the threat of cyberattacks is rising.

November 29, 2022

The American Hospital Association (AMA) is warning healthcare systems the Russians may attempt cyber attacks amid rising tensions of the war in Ukraine and the international community's response. #Ukraine #warinukraine #ukrainewar

MercyOne back online after ransomware attack

MercyOne Central Iowa is mostly back online in the aftermath of a ransomware attack of its parent company, CommonSpirit Health.

November 4, 2022

MercyOne recovers from cyberattack of parent company

CommonSpirit became aware of an IT attack that was impacting some of its facilities, and the healthcare company subsequently took certain systems offline, including electronic health records and patient portals.

October 21, 2022

HHS Office for Civil Rights struggling to keep up with cyberattacks

Cyberattacks are rising fast in the healthcare space, and the federal office tasked with dealing with these breaches is completely overwhelmed.

August 31, 2022

Data breaches cost an average of $10M

Breach costs have risen 13% over the last two years, and the increase could be passing down through the economy, influencing higher prices for goods and services.

July 27, 2022

Patient privacy concerns are rising

92% of patients believe privacy is a right and their health data should not be available for purchase by corporations or other individuals.

July 25, 2022

SIIM 2022: 7 ways to be ever-prepared for cyberattack

Some decisions after a cyberattack are reactive and made on the fly, but imaging operations can take a number of steps ahead of time to plan for unplanned downtime and limit the impact of a temporary outage.

June 10, 2022

Cybersecurity

AMA says Change Healthcare breach is crippling independent practices

Breached Change Healthcare server lacked multifactor authentication, UnitedHealth CEO admits

Kaiser Permanente exposed data on 13.4 million members to tech companies

Hackers were inside Change Healthcare’s systems 9 days before attack

Atrium Health sued for violating patient privacy, sharing data with Facebook and Google