Health Care | SC Media

Health Care

Phishing scam stings Oregon Dept. of Human Services, compromises emails containing resident data

By

The Oregon Department of Human Services (DHS) was the victim of a phishing campaign earlier this year, resulting in a data breach that reportedly involves the records of up to 1.6 million state residents. According to a March 21 Oregon DHS press release, the incident took place last Jan. 8, when nine separate agency employees…

Critical OpenSSL vulnerability, 'Heartbleed Bug,' enables SSL/TLS decryption

Medtronic defibrillators vulnerable to attack

By

The Department of Homeland Security is warning users of Medtronic defibrillators of two vulnerabilities that could lead to an attacker accessing and altering the device. The warning, which was issued through the DHS Cybersecurity and Infrastructure Security Agency, covers two vulnerabilities, CVE-2019-6538 and CVE-2019-6540. A complete list of the models affected can be found here.…

Healthcare sector's broad data sets will attract increased attacks in 2015

More healthcare facilities affected by Wolverine Solutions Group data breach come forward

By

Hundreds healthcare facilities and more than one million patients had their information compromised when their shared third-party vendor Wolverine Solutions Group (WSG) suffered a ransomware attack in September 2018. WSG, which handles billing and mailing services for the healthcare organizations, said its files were encrypted on Sept. 25, 2018 by a ransomware attack. The decryption…

Rush University Medical Center data breach, 45,000 patients affected

By

About 45,000 Rush University Medical Center patients had their data exposed when a third-party employee mistakenly exposed a file containing the data to an unauthorized individual. The Chicago hospital said the data breach most likely happened in May 2018 when a worker at the hospital system’s billing processing vendors disclosed a file containing the patient…

Hospital

Breach could impact roughly 326,000 UConn Health patients

By

An unauthorized party accessed the email accounts of several UConn Health employees last Christmas Eve, in a data breach that reportedly may affect up to roughly 326,000 patients. In an online disclosure, the Connecticut-based academic medical center revealed that the breached data includes, names, dates of birth, addresses and “limited medical information such as billing…

Heart attack: Ransomware encrypts Australian cardiac clinic’s patient files

By

Employees of Melbourne Heart Group in Malvern, Australia, have been unable to access patients’ medical records following a January ransomware attack that encrypted the health care provider’s files. The cardiology clinic disclosed the incident today on its website’s home page. “We have been assured that no patient’s privacy has been compromised in any way,” the…

42,000 patients data compromised AdventHealth Medical Group data breach

By

AdventHealth Medical Group Pulmonary and Sleep Medicine officials are warning up to 42,000 of their patients of a 16-month-long data breach at the facility that exposed their personal and health information. The breach was discovered on December 27, 2018, but had been taking place since August 2017, according to HIPAA Journal. The medical facility, which…

Hundreds of Delaware residents among the victims of BenefitMall breach

By

Delaware’s Department of Insurance announced yesterday that 650 residents and five companies located within the state were impacted by a 2018 data breach of BenefitMall, a third-party HR services administrator for health insurance companies. It was originally back on Jan. 4, 2019, that BenefitMall, aka Centerstone Insurance and Financial Services, publicly disclosed a “data security…

Unhappily ever after: Hospital hacker rescued by Disney cruise ship sentenced to 10 years

By

A man convicted of launching DDoS attacks against two Boston-area health care facilities was sentenced in U.S. District Court on Thursday to 10 years in prison. Martin Gottesfeld, 34, of Somerville, Mass., was found guilty last August of attacking Boston Children’s Hospital and the Wayside Youth & Family Support Network back in 2014. Gottesfeld has…

Hacking for the holidays: Healthcare Ransomware Edition

Here’s how the healthcare industry can protect itself during the busy holiday hacking season The healthcare ransomware conundrum When ransomware hits a hospital, lives are on the line. Ed Tittel looks at how to deal with cyberattacks when lives are at stake The medical services industry is in a uniquely vulnerable position when it comes…

Next post in Security News