-
BD, CISA warn of security flaw in cancer testing system
A hard-coded credential vulnerability in medical laboratory equipment used for cervical cancer screenings could allow an attacker to modify sensitive patient information, according to an Oct. 4 warning from BD and the Cybersecurity and Infrastructure Security Agency. -
3,800 UW Medicine patients affected by 3rd-party data breach
Seattle-based UW Medicine is notifying patients about a ransomware attack at a mail service vendor that has compromised the protected health information of 3,800 patients. -
MercyOne sites scheduling patient appointments via phone calls after national IT incident
All care locations in MercyOne Central Iowa's region, including Des Moines, are continuing to take patient appointments even as the health system struggles with an unspecified IT security breach affecting its parent company, Chicago-based CommonSpirit, the Des Moines Register reported Oct. 6. -
7 things that lead to data breaches
While working with so much personal data and information, health systems need to be aware of behaviors that can lead to a data breach. -
Ro contractor 'inadvertently' uploaded employee information to the internet
Telehealth unicorn Ro is alerting employees that a security contractor "inadvertently" uploading a spreadsheet of employee data led to a data breach, according to Oct. 6 reporting in Techcrunch. -
Former Uber security chief found guilty of concealing data breach from feds
The former chief security officer of Uber has been found guilty of not reporting a data breach to federal authorities, The New York Times reported Oct. 5. -
The effect of CommonSpirit's IT issues: EHR outages and rescheduled appointments
Chicago-based CommonSpirit, the second-largest nonprofit hospital chain in the U.S., has confirmed a cybersecurity incident has disrupted medical services, IT systems and EHR systems at its facilities across the country. -
Canadian man sentenced in connection to ransomware attacks that hit hospitals
Canadian national Sebastian Vachon-Desjardins, 35, has been sentenced to 20 years in prison for his role in NetWalker ransomware attacks. -
CommonSpirit hospitals shut down EHR systems after IT incident
Hospital facilities affiliated with Chicago-based CommonSpirit Health have shut down their EHR systems due to an IT security incident affecting its parent company, the Des Moines Register reported Oct. 4. -
Mike Roberts promoted to Appalachian Regional's chief information security officer role
Lexington, Ky.-based Appalachian Regional Healthcare is promoting current Chief Technology Officer and Vice President of IT Mike Roberts to chief information security officer, according to Oct. 3 reporting in The Register Herald. -
LifeBridge Health to pay $9.5M to settle data breach lawsuit
Baltimore-based LifeBridge Health has agreed to pay $9.5 million to settle a lawsuit over a May 2018 data breach that compromised the protected health information of 530,000 patients, Top Class Action reported Oct. 3. -
CommonSpirit IT security incident disrupts hospital operations
Chicago-based CommonSpirit Health was the victim of an IT security incident that is impacting its facilities across the country, Kitsap Sun reported Oct. 3. -
VA investigating data breach that compromised sensitive credentials, source codes
A federal contractor published source codes containing sensitive credentials from the Department of Veterans Affairs, FedScoop reported Sept. 29. -
Third-party risk in healthcare: a continuing crisis
Cybersecurity incidents at public and private companies have become alarmingly frequent and a large portion of them are due to third-party data breaches. -
2,857 Geisinger patients affected by 3rd-party data breach
Danville, Pa.-based Geisinger is notifying patients about a ransomware attack at a mail service vendor that has compromised the protected health information of 2,857 patients, CNHI News reported Sept. 28. -
Seattle Children's notifies 6,750 patients of third-party data breach
Seattle Children's is alerting patients about a ransomware attack at a mail service vendor that has compromised the protected health information of 6,750 patients. -
Report: 63% of orgs have unfilled cybersecurity positions
Sixty-three percent of organizations have an unfilled cybersecurity position, up from 55 percent last year, according to the "State of Cybersecurity 2022" report from ISACA and LookingGlass. -
Magellan Health settles data breach lawsuit for $1.43M
Magellan Health will pay $1.43 million to settle a lawsuit over a May 2019 phishing scheme that compromised the protected health information of 273,000 patients, Top Class Action reported Sept. 28. -
Connecticut hospital warns patients about third-party data breach
Stafford Springs, Conn.-based Johnson Memorial Hospital is alerting patients that a data breach at a law firm potentially compromised some of its patient data, Journal Inquirer reported Sept. 28. -
Humana's 3rd-party vendor breach affects 22,767 patients
Choice Health, the company used to help Humana sell its products, experienced a data breach that resulted in the protected health information of 22,767 patients being compromised.
Page 48 of 50