Health Care | SC Media

Health Care

12 states file lawsuit against medical record data companies

By

A multi-state lawsuit has been filed in an Indiana federal court against three affiliated medical data IT firms, alleging poor cybersecurity practices that led to breaches with 3.9 million compromised records. The attorneys-general of Arizona, Arkansas, Florida, Indiana, Iowa, Kansas, Kentucky, Louisiana, Minnesota, Nebraska, North Carolina and Wisconsin jointly launched the suit against defendants Medical Informatics Engineering,…

Adobe fixes zero-day Flash bug after attackers target Russian clinic with exploit

By

Adobe Systems today issued an emergency security update for Flash Player following the discovery of a critical vulnerability that attackers were actively exploiting in a Nov. 29 phishing operation targeting a Russian state health care institution. The zero-day arbitrary code execution exploit was specifically employed against Moscow-based “Polyclinic No. 2” of the Administrative Directorate of…

Rhode Island’s Thundermist health center struck by ransomware

By

Thundermist Health Center in Woonsocket, R.I., was victimized by a ransomware attack that disrupted its systems on Thursday morning. Amanda Barney, associated VP of communications and development said that the health care center acted promptly to protect patient and employee data, local news affiliate WPRI reported. As of Thursday evening, there is no evidence that any…

Inspector General’s report documents security flaws at Arizona Medicare MCOs

By

A recent risk assessment of information systems at two Arizona-based Medicaid managed care organizations turned up 19 vulnerabilities, according to a new report from the Department of Health and Human Services Office of the Inspector General. Collectively, the flaws were related to remote network access (2), password and login controls (2), physical security controls (1), network…

Study finds medical device security pros may have false sense of security

By

A recent study surveying healthcare IT professionals found while the majority of them are very confident their connected devices are protected from cyberattacks, there may be some disconnects between the perceived level of security and how secure medical devices are. The 2018 Zingbox Second Annual Connected Medical Device Survey sought input from more than 200…

5 steps for securing connected medical devices

Patients expect hospitals to be safe havens, but more and more we’re seeing that the weakest and most critical assets in hospital networks are the very instruments needed to save lives: medical devices. With the increase in connected medical devices, the risk for malicious attacks is growing. Eighty percent of hospitals were attacked during the last…

SamSam hit 67 targets in 2018 with a focus on the U.S.

By

SamSam ransomware has cut a relatively wide swath across the world with at least 67 different, 54 in the U.S., targets being struck in 2018, according to a Symantec report. Symantec researchers noted that despite such high-profile incidences such as Atlanta and the Colorado Department of Transportation and the Port of San Diego, the majority…

ObamaCare portal breach compromises data of 75,000 patients

By

Threat actors compromised the information of 75,000 patients after breaching an ObamaCare (Affordable Care Act) enrollment portal last month. The Centers for Medicare and Medicaid first noticed problems in the online enrollment portal available to agents and brokers October 13 and the breach was detected Thursday. The ACA healthcare portal accessible general public was not affected…

Anthem to pay record $16M for 2015 data breach

By

Anthem will pay a record $16 million to settle potential privacy violations stemming from its massive data breach 2015 data breach which compromised the data of nearly 80 million current and former patients. The settlement amount is reportedly three times larger than the previous record amount paid to the governments in privacy cases.   The…

Mail mix up sends Michigan Medicine letters to the wrong people

By

For the second time this year healthcare provider Michigan Medicine is notifying patients that some of their personally identifiable information may have been exposed, this time due to a mailing error. Michigan Medicine, which is part of the University of Michigan, said in a statement that in September a third-party printing vendor sent 3,700 patients…

Next post in Data Breach