Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

AMA says Change Healthcare breach is crippling independent practices
A survey of physicians by the American Medical Association reveals that many practices are still losing revenue and struggling to make payroll as a result of the Change Healthcare hack.
Breached Change Healthcare server lacked multifactor authentication, UnitedHealth CEO admits
UnitedHealth CEO Andrew Witty told the Senate Finance Committee that systems have been rebuilt “from scratch” in light of the oversight.
Kaiser Permanente exposed data on 13.4 million members to tech companies
Tracking technologies sent patient information to advertisers such as Microsoft, Google and Meta.
Hackers were inside Change Healthcare’s systems 9 days before attack
UnitedHealth Group confirms hackers have personal data on “a substantial proportion of people in America."
Atrium Health sued for violating patient privacy, sharing data with Facebook and Google
In a court filing, the plaintiffs claim Atrium Health used Meta's Pixel code on its website, resulting in patients receiving targeted ads.

FDA issues a cybersecurity warning: DNA sequencing software is vulnerable to attacks

While there haven’t been any reports of a cybersecurity threat, the vulnerability could allow an unauthorized user to take control of the medical device remotely, alter settings on the systems and even impact patient test results, according to the FDA.

June 3, 2022

Cardiologist allegedly created and sold ransomware tools to hackers

One of the cardiologist's creations, "Thanos," allowed his clients to develop their own ransomware software and rent it out to other criminals.

May 18, 2022

Health data breaches were on the rise last year, increasing 3-fold in 2021,leaving millions of Americans’ sensitive health information exposed.

Health data breaches increased three-fold in 2021

Health data breaches were on the rise last year, leaving millions of Americans’ sensitive health information exposed.

March 24, 2022

Electronic health records susceptible to cyberattacks, HHS warns

Despite their benefits, EHRs are vulnerable to a variety of cyberthreats, including malware and ransomware attacks, according to a Health and Human Services brief.

February 23, 2022

Pandemic has opened doors for telehealth, but security concerns could narrow the space

More than half of Americans, 54%, have seen doctors remotely during the COVID crisis. However, some 48% might not touch telehealth again if their data were to get hacked during a telehealth-related breach.

August 19, 2020

How Secure Is That Scanner?

In a world of networked medical devices, it’s not hard to imagine a radiology-heavy cyberattack that is not only malicious but also ingenious.

June 25, 2019

Philadelphia hospital warns patients of recent phishing attacks

The health information of several patients was exposed following two phishing attacks at the Children’s Hospital of Philadelphia (CHOP).

October 25, 2018

79% of people support medical devices that immediately alert physicians

Despite growing concerns over data security, nearly 80 percent of people are in favor of medical devices that immediately alert physicians of significant changes in health.

October 25, 2018

Cybersecurity

AMA says Change Healthcare breach is crippling independent practices

Breached Change Healthcare server lacked multifactor authentication, UnitedHealth CEO admits

Kaiser Permanente exposed data on 13.4 million members to tech companies

Hackers were inside Change Healthcare’s systems 9 days before attack

Atrium Health sued for violating patient privacy, sharing data with Facebook and Google