Health Care News, Articles and Updates

Flaws in web-based radiological solution could allow attackers to see right through database

A web-based reporting tool that tracks radiation doses delivered by X-ray machines and related devices contains vulnerabilities that could impact patient confidentiality, system integrity, or system availability, Dutch tech company Philips reported.

Almost 5,000 The Daniel Drake Center for Post-Acute Care patient records exposed

The Daniel Drake Center (DDC) for Post-Acute Care, which is part of the University of California's health system, reported patient information was accessed and viewed by an unauthorized employee over a two-year period.

Staffing agency employee allegedly distributes patient information illegally

The Detroit Medical Center (DMC) has alerted more than 1,500 of a data breach caused by an employee who shared personal information with unauthorized individuals.

5,300 University of Iowa Health Care records exposed for two years

Thousands of University of Iowa Health Care (UIHC) patients had some of their private information inadvertently posted for more than two years on a web application development site.

Indiana Medicaid patient information exposed

Indiana Medicaid members may have had their personally identifiable information compromised when a third-party vendor mistakenly made public a link to the data.

UPDATED: Information-stealing malware found targeting Israeli hospitals

Researchers from Trend Micro have discovered a malware campaign seemingly targeting Israeli hospitals with highly obfuscated information-stealing malware that abuses LNK shortcut files.

2,000 Texas HHSC clients health data compromised

The Texas Health and Human Services Commission (HHSC) reported a data breach possibly affecting almost 2,000 people in the Houston area.

Botched security: Celebrities, other patients, affected after plastic surgery files are breached and stolen

Hackers on Tuesday publicly posted more than 25,000 files and private images stolen from a Lithuanian plastic surgery clinic after attempting to financially extort the medical facility and its clients.

WannaCry patches mistakenly knock Aussie hospitals offline

In a case of no good deed goes unpunished, five Australian hospitals accidently locked out staff access to the computer systems after installing patches designed to protect them from WannaCry ransomware.

All cried out? WannaCry ransomware victims strive to recover as researchers dig into attack

As the world returned to work on Monday, businesses continued to pick up the pieces following a historic cyberattack that crippled Windows machines across the globe with WanaCrypt0r 2.0 ransomware.

Report: Ontario mails health card forms containing personal info to wrong addresses

Ontario, Canada mistakenly exposed thousands of residents' personal information after printing the wrong addresses on individuals' health card renewal forms, causing them to be sent to strangers, according to the Ottawa Citizen.

Microsoft bug linked to spy campaigns, bank thefts reportedly took 6 months to fix

A zero-day bug in Microsoft Office and WordPad that hackers exploited to spy on targeted users, implant malware, and steal banking credentials took nine months to fix, according to news reports.

1.5 million records lost in March health care industry data breaches

A sharp spike in the number of health care data breaches was recorded in March with 39 incidents taking place compromising more than 1.5 million patient record.

Fancy Bear accused of stealing IAAF athlete data

Russian APT group Fancy Bear is believed to have struck again, this time compromising the medical data of more than 80 International IAAF athletes.

Breach compromises data of 9,000 Verity Health System patients

About 9,000 Verity Health patients had their personal data compromised after an unauthorized entry was discovered in the health system's network.

Sentara Healthcare notifies 5.4K of breach

The breach of a third party vendor resulted in Virginia-based Sentara Healthcare notifying more than 5,000 patients about their information being compromised.

3,600 patients affected by breach at the Children's Hospital Los Angeles

In mid-December a laptop belonging to a doctor working at the Children's Hospital Los Angeles and the Children's Hospital Los Angeles Medical Group was stolen.

Number of U.S. healthcare data breaches almost doubles in 2016

Health care organizations in the United States lost far fewer patient records in 2016 due to cyberattacks, compared to the year before, but suffered through almost twice as many data breaches during the year.

Anthem breach caused by nation state

The California Department of Insurance reported that the 2015 Anthem breach was the result of a nation state attack.

Researcher: Subcontractor leaks data on military health care professionals

Personal data belonging to health care professionals working for the U.S. military was sitting exposed on an insecure server operated by a medical services subcontractor, a security researcher from MacKeeper reported on Saturday.

FDA Issues Final Guidance for Medical Device Security

With all the current concern over IoT being insecure from cyberattacks, the U.S. Food & Drug Administration (FDA) posted a timely blog post outlining the agency's final guidance for medical device safety.

November healthcare breaches: 458,000 patient records affected

The healthcare industry had an up and down November with the number of patient records lost in data breaches declining, but the number of incidents reaching a new high for the year.

Healthcare organisations see value in going mobile but concerns linger over device management

New research by Vanson Bourne shows security as the top concern when considering management of staff mobile devices, however only 54 percent of respondents are confident that their organisation can quickly adapt to changing regulations.

SamSa ransomware extortionists earned $450K in yearly ill-gotten profits

Over the last 12 months, the cybercriminals behind the SamSa ransomware campaign targeting healthcare organizations have raked in at least $450,000 in ransom payments.

Former patients affected in Broward Health breach

Fort Lauderdale, Florida-based Broward Health announced a breach that may have compromised patient data.

75% of healthcare industry hit with malware, report

The healthcare vertical is at particular risk from ransomware. This is just one of the findings of the "2016 Healthcare Industry Cybersecurity Report," a just-released survey from SecurityScorecard.