About 23,000 accounts have been compromised by a data breach that took place at HealthEquity when an employee fell for a phishing scam.
The personal information of Elmcroft Senior Living residents and their family members, employees and others could have been stolen in a data breach that occurred in mid-May, the Louisville, KY-based company said late Friday.
The San Francisco-based health care facilities operator Dignity Health recently experienced an accidental email breach affecting 55,947 patients, according to a May 31 disclosure form the not-for-profit corporation filed with the U.S. Department of Health and Human Services.
Fifty-eight percent out of 100 senior health care executives whose companies were involved in a recent merger or acquisition said in a new survey that their particular organization uncovered a cybersecurity problem with its newly annexed business after the deal was already consummated.
LifeBridge Health is notifying 500,000 patients that their personal information was exposed in a data breach.
Allied Physicians of Michiana, Mich., reported it was hit with a SamSam ransomware attack, but was able to quickly restore its systems and the healthcare facility does not believe any patient data was compromised.
Serbian authorities yesterday announced the arrest of a Belgrade man for his alleged affiliation with The Dark Overlord, a malicious cyber threat actor known for extorting U.S. schools, hospitals and entertainment companies, often after stealing their data or content.
The Oregon Clinic discovered on March 9 that an unauthorized third party had accessed an email account possibly exposing the personal health information for some of its patients.
The victims of a phishing attack targeting UnityPoint Health filed a class action lawsuit against the firm claiming victims were falsely told their social security numbers hadn't been compromised
Fitbit and Google have inked a deal that will have the fitness device vendor upload data to Google's Cloud Healthcare API to it can be made accessible by healthcare providers.
California's Center for Orthopaedic Specialists (COS) last week disclosed that its three facilities were affected by a ransomware attack on a third-party system that allowed adversaries to access patient data and encrypt it for the purposes of extortion.
The healthcare industry is under attack by a new cybergang named Orangeworm, which is striking with the Kwampirs backdoor.
As researchers continue to find security flaws in medical devices and threat actors continue to target the healthcare sector, the FDA is looking to impose new security measures.
Doctors at RSA on Thursday presented a riveting simulation of a health care emergency caused by a medical device hack -- showing that physicians' trust in the integrity of their equipment can be misplaced.
Texas Health Resources, a nonprofit health care delivery system in north Central Texas, has disclosed that an unauthorized party may have gained access to patient information back in October 2017 by compromising some of the organization's email accounts.
A California-based medical device manufacturer reported that 30,000 former and current customers may have had their personal information exposed when a company employee's email account was compromised.
GAO report recommends stronger security controls for third parties that receive Medicare beneficiary data
The U.S. Government Accountability Office (GAO) last week publicly released a report warning that the Centers for Medicare and Medicaid Services (CMS) has failed to provide specific security controls guidance to research organizations with whom it shares Medicare beneficiary data.
Health care device manufacturer Natus Medical Incorporated has reportedly updated the software used in its Xltek EEG products, which monitor brain activity, after a researcher discovered five vulnerabilities that a remote, unauthenticated attacker could exploit to trigger code execution of a denial of service condition.
CareFirst BlueCross BlueShield said one of its employees fell victim to a phishing attack that led to thousands of its members' personal information being exposed.
A Long Island, N.Y., medical practice left an exposed port normally used for remote synchronization open exposing at least 42,000 medical records.
The number of malicious bots circulating around the internet and impacting website performance increased by 9.5 in 2017, accounting for 21.8 percent of all traffic, according to a new report today from bot detection and mitigation firm Distil Networks, based on data collected from its global network.
An Albany, N.Y. hospital suffered a data breach affecting about 135,000 patients when an unauthorized party gained access to its servers.
Healthcare is the only industry in which internal threat actors are the biggest threat to an organization, according to a recent study.
Companies are sacrificing security for expediency and intentionally putting speed and profits before mobile security.
Decatur County General Hospital in Parsons, Tenn., has publicly disclosed that an unauthorized party accessed the server for its electronic medical record system and secretly implanted cryptomining malware.
The ABC hospital drama concluded its hacker storyline in the Jan. 18 midseason premier. To gauge the accuracy of the episode, SC Media invited back the same three health care cyber experts who analyzed "part one" back in November.
The difficulty organizations may have complying with the EU's General Data Protection Regulation (GDPR) became apparent when a Norwegian health care group took too long to report a data breach earlier this month.
Aetna will pay a $17.1 million as part of a settlement for a July 2017 data breach that may have compromised the information of thousands of HIV patients.
A New Mexican city of roughly 45,000 people and an Indianan hospital operator have fallen victim to separate ransomware attacks this month. In other localized news, a data breach at a third-party educational testing service exposed information belonging to 52 students in New York State.