Health Care | SC Media

Health Care

42,000 patients data compromised AdventHealth Medical Group data breach

By

AdventHealth Medical Group Pulmonary and Sleep Medicine officials are warning up to 42,000 of their patients of a 16-month-long data breach at the facility that exposed their personal and health information. The breach was discovered on December 27, 2018, but had been taking place since August 2017, according to HIPPA Journal. The medical facility, which…

Hundreds of Delaware residents among the victims of BenefitMall breach

By

Delaware’s Department of Insurance announced yesterday that 650 residents and five companies located within the state were impacted by a 2018 data breach of BenefitMall, a third-party HR services administrator for health insurance companies. It was originally back on Jan. 4, 2019, that BenefitMall, aka Centerstone Insurance and Financial Services, publicly disclosed a “data security…

Unhappily ever after: Hospital hacker rescued by Disney cruise ship sentenced to 10 years

By

A man convicted of launching DDoS attacks against two Boston-area health care facilities was sentenced in U.S. District Court on Thursday to 10 years in prison. Martin Gottesfeld, 34, of Somerville, Mass., was found guilty last August of attacking Boston Children’s Hospital and the Wayside Youth & Family Support Network back in 2014. Gottesfeld has…

Hacking for the holidays: Healthcare Ransomware Edition

Here’s how the healthcare industry can protect itself during the busy holiday hacking season The healthcare ransomware conundrum When ransomware hits a hospital, lives are on the line. Ed Tittel looks at how to deal with cyberattacks when lives are at stake The medical services industry is in a uniquely vulnerable position when it comes…

Dental Center of NW Ohio feels bite of ransomware attack on IT vendor

By

The Toledo-based Dental Center of Northwest Ohio has disclosed that a ransomware attack affecting its local third-party IT vendor may be endangered personal data belonging to current and former patients and employees. The IT vendor, Arakyta, informed the health care provider of the possible breach situation around Sept. 1, 2018, the health care provider said in…

Vermont, Dallas medical facilities suffer email account breaches

By

In separate incidents, two U.S. health care facilities have publicly disclosed data breaches that resulted from the unauthorized access of an employee’s email. Yesterday, the University of Vermont Health Network – Elizabethtown Community Hospital (ECH) acknowledged that an unauthorized individual remotely accessed an employee’s email account on Oct. 9. This account contained the personal information of…

‘Sharpshooter’ cyberespionage campaign scopes out defense, critical infrastructure sectors

By

A global phishing campaign called Operation Sharpshooter was discovered using fake job recruitment documents to infect defense, government and critical infrastructure organizations with a malicious backdoor implant, presumably for cyber espionage purposes. The implant, nicknamed Rising Sun, was observed in least 87 impacted organizations over the course of October and November, McAfee Labs reported today…

12 states file lawsuit against medical record data companies

By

A multi-state lawsuit has been filed in an Indiana federal court against three affiliated medical data IT firms, alleging poor cybersecurity practices that led to breaches with 3.9 million compromised records. The attorneys-general of Arizona, Arkansas, Florida, Indiana, Iowa, Kansas, Kentucky, Louisiana, Minnesota, Nebraska, North Carolina and Wisconsin jointly launched the suit against defendants Medical Informatics Engineering,…

Adobe fixes zero-day Flash bug after attackers target Russian clinic with exploit

By

Adobe Systems today issued an emergency security update for Flash Player following the discovery of a critical vulnerability that attackers were actively exploiting in a Nov. 29 phishing operation targeting a Russian state health care institution. The zero-day arbitrary code execution exploit was specifically employed against Moscow-based “Polyclinic No. 2” of the Administrative Directorate of…

Rhode Island’s Thundermist health center struck by ransomware

By

Thundermist Health Center in Woonsocket, R.I., was victimized by a ransomware attack that disrupted its systems on Thursday morning. Amanda Barney, associated VP of communications and development said that the health care center acted promptly to protect patient and employee data, local news affiliate WPRI reported. As of Thursday evening, there is no evidence that any…

Next post in Security News