A hospital leader told Congress that a 2021 ransomware attack his health system experienced was "harder than the pandemic, by far."

The Indiana Supreme Court has revived part of a lawsuit against Indianapolis-based Community Health Network, which alleges that the health system disclosed a patient's medical information to a third party, who then posted the information to Facebook. 

Cyberattacks through emails are way up at hospitals and health systems in 2023, software company Abnormal Security reported.

WVU Medicine said data for a limited number of its patients was compromised due to a breach at Nuance Communications, a healthcare artificial intelligence company owned by Microsoft that the health system works with. 

An unauthorized party accessed systems at Oakdale, Calif.-based Oak Valley Hospital District and was able to gain access to files that contained patient data.

A ransomware attack hindered the state of Maryland's ability to monitor patient safety at hospitals, The Washington Post reported.

Nuance Communications, a healthcare artificial intelligence company owned by Microsoft, announced that 13 of its healthcare clients' data was affected by the MoveIt software breach, The HIPAA Journal reported Sept. 19.

LockBit, a ransomware gang, said it would leak stolen data from Carthage (N.Y.) Area Hospital and Ogdensburg, N.Y.-based Claxton-Hepburn Medical Center if a ransom was not paid by Sept. 18, but the hospital officials said that did not happen, WWNY reported Sept. 21. 

Ocean Springs, Miss.-based Singing River Health System's CEO, Laurin St. Pe, said he's looking to "beef up" its security measures as the organization continues to grapple with a cyberattack that started Aug. 21, WLOX reported Sept. 19. 

Patients at Manchester-based Eastern Connecticut Health Network have run into numerous patient care and billing issues since an August cyberattack on the health system's parent company, the Journal Inquirer in Manchester reported Sept. 19.

Springfield, Ill.-based Hospital Sisters Health System and Green Bay, Wis.-based Prevea Health have restored their access to MyChart after experiencing an outage since Aug. 27. 

HHS has warned that Lazarus Group, a North Korean state-sponsored hacking group, has been targeting U.S. healthcare by exploiting a vulnerability in ManageEngine products.

Patient data from Sioux Falls, S.D.-based Sanford Health has been compromised as the health system's imaging vendor, DMS Health Technologies, experienced a data security incident between March 27 and April 24, Valley News Live reported Sept. 15. 

Richard Duvall, CEO of Carthage (N.Y.) Area Hospital and Ogdensburg, N.Y.-based Claxton-Hepburn Medical Center, said they have received a demand from hackers but will not be paying the ransom, North Country This Week reported Sept. 15. 

Russian ransomware gang Clop is being attributed to the attack on a vulnerability in software called MOVEit that has affected multiple hospitals and health systems around the U.S., Security Affairs reported Sept. 17. 

The FBI, the New York State Department of Health and the Division of Homeland Security and Emergency Services are trying to help Carthage (N.Y.) Area Hospital and Ogdensburg, N.Y.-based Claxton-Hepburn Medical Center recover from a ransomware attack, The Record reported Sept. 14. 

Several hospitals and health systems across the U.S. are facing lawsuits regarding data breach incidents that involved patients' protected health information. 

The American Hospital Association is warning hospitals and health systems to be on the lookout for cybercriminals who may impersonate their executives via deepfakes.

Patients of Chicago-based CommonSpirit Health had their data compromised in the massive MOVEit hack that stole private information from millions of people across the globe.

Culver City, Calif.-based Prospect Medical Holdings has restored its IT systems nearly six weeks after a cyberattack knocked them offline.