Health Care

Health Care

It’s privacy vs. innovation as Google collects data on 50 million medical patients

Google and health care provider organization Ascension have publicly confirmed a recent report that the two companies have embarked on a massive initiative to aggregate the data of roughly 50 million patients and store it on the cloud. The companies say it will improve patient care and administration, but the strategy has also sparked concern…

St. Louis health center stymied by September ransomware attack

Betty Jean Kerr People’s Health Centers, a St. Louis-area medical and social services provider, was victimized last September by a ransomware attack that continues to prevent access to data collected from patients, health care providers and employees. The Associated Press reported on Friday that the breach affects roughly 152,000 people. The provider serves thousands of…

Phishing scam behind Kalispell Regional Healthcare data breach

Kalispell Regional Healthcare (KRH) just reported a cyberattack that took place in late August and exposed patients’ health information. The Kalispell, Mont. facility had several employees fall for a phishing email scam, resulting in the attackers gaining the login credentials to KRH’s system, the hospital said in a statement. “This summer we discovered that several…

Health, personal data of 1 million New Zealanders exposed in series of intrusions

The medical and personal information of about 1 million people was exposed after a breach of Tū Ora Compass Health, a primary health organization (PHO) located in New Zealand. The non-governmental organization (NGO) discovered four intrusions – by what Ministry of Health Director-General of Health Ashley Bloomfield said were two hacktivists and two “more sophisticated…

DCH Health System pays ransomware attackers in bid to restore operations

OCT. 12 UPDATE: On Oct. 10, DCH lifted its diversion protocol and began accepting all patients again in its Emergency Departments. Outpatient imaging for DCH Regional Medical Center and Northport Medical Center resumed normal operations on Oct. 11. DCH continues to work on restoring its systems. Forced to turn away certain patients following a ransomware…

Ransomware attack on Premier Family Medical reportedly impacts records of 320K patients

Utah-based health care practice Premier Family Medical was struck by ransomware last July 8 in a cyberattack that reportedly affected the records of roughly 320,000 patients. The medical provider, which operates 10 locations across Utah County, originally announced the incident publicly on Aug. 30, noting that the malware had restricted employees’ access to their systems…

U.S. indicts three over alleged phishing campaign targeting universities, businesses

The Department of Justice has indicted two Americans and a Nigerian on multiple charges for their alleged roles in a phishing scheme that targeted college employees, banks and other businesses from May 2013 through June 2014. Filed on Tuesday in U.S. District Court in New Mexico, the indictment identifies the defendants as Nigerian citizen Otuokere…

Over 200M devices affected by critical flaws found in real-time operating system

VxWorks, a real-time operating system (RTOS) that runs on more than 2 billion devices — many in industrial, health-care and enterprise environments — has been found to contain 11 vulnerabilities, six of which are critical flaws that enable remote code execution. Around 200 million devices are running the vulnerable versions of the RTOS, according to…

Premera Blue Cross to cough up $10 million to 30 states over data breach

Premera Blue Cross has consented to pay $10 million as compensation for a nearly year-long data breach that impacted more than 10.4 million health patients, the Washington state’s Attorney General Bob Ferguson announced yesterday. More than half of those funds, roughly $5.4 million, will be allocated to Washington, and will be applied toward the enforcement…

Medtronic recalls insulin pumps due to potential of hacker sabotage

Medical device manufacturer Medtronic plc took the unusual step of issuing a recall for several of its insulin pump products due to serious hacking concerns that were detailed in a pair of security alerts from the Food and Drug Administration (FDA) and ICS-CERT. The root cause of the scare is an improper access control vulnerability…

Next post in Vulnerabilities