Tag: healthcare
-
Strengthening Cyber Defense and Achieving Digital Operational Resilience in Healthcare
Look, we all know cybersecurity is hard. Then you add budget pressures, talent gaps, and operational chaos, it gets even harder. I’ve lived it. I spent over 25 years at MD Anderson Cancer Center, the largest cancer center in the world. I retired recently as CTO. Our mission was clear: end cancer. But that… First…
-
U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems
The U.S. Department of Justice (DoJ) on Thursday announced charges against a 36-year-old Yemeni national for allegedly deploying the Black Kingdom ransomware against global targets, including businesses, schools, and hospitals in the United States.Rami Khaled Ahmed of Sana’a, Yemen, has been charged with one count of conspiracy, one count of intentional damage to a protected…
-
Enhancing EHR Security: Best Practices for Protecting Patient Data
In the digital healthcare landscape, electronic health records (EHRs) are foundational to patient care, operational efficiency and regulatory compliance. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/05/enhancing-ehr-security-best-practices-for-protecting-patient-data/
-
Healthcare group Ascension discloses second cyberattack on patients’ data
This time criminals targeted partner’s third-party software First seen on theregister.com Jump to article: www.theregister.com/2025/05/01/ascension_cyberattack/
-
Ascension Notifying Patients About Rash of Third-Party Hacks
4 Breaches Appear to Potentially Affect Hundreds of Thousands Across Several States. Catholic hospital chain Ascension Health is notifying hundreds of thousands of individuals across several states of at least four hacking incidents in recent months involving third-parties. Ascension reported one of the breaches this week, another in mid-April and the others in March and…
-
Navigating Healthcare Cybersecurity CISO’s Practical Guide
Navigating healthcare cybersecurity is crucial in today’s hyper-connected environment, where it underpins both operational resilience and patient trust. The rapid digitization of medical records, proliferation of connected devices, and the growing sophistication of cyber threats have placed Chief Information Security Officers (CISOs) at the forefront of organizational strategy. No longer just gatekeepers of compliance, CISOs…
-
Smashing Security podcast #415: Hacking hijinks at the hospital, and WASPI scams
He’s not a pop star, but Jeffrey Bowie is alleged to have toured staff areas of a hospital in Oklahoma, hunting for computers he could install spyware on. We dive into the bizarre case of the man accused of hacking medical networks and then sharing how he did it on LinkedIn. First seen on grahamcluley.com…
-
Ransomware bei einem Krankenhaus auf den U.S. Virgin Islands
JFL Hospital Becomes Latest Government Entity Hit by Cyberattack Following V.I. Lottery Ransomware Incident First seen on viconsortium.com Jump to article: viconsortium.com/vi-government/virgin-islands-jfl-hospital-becomes-latest-government-entity-hit-by-cyberattack-following-v-i–lottery-ransomware-incident
-
Feel Relieved with Effective Least Privilege Tactics
Why are Least Privilege Tactics Crucial in the Cybersecurity Landscape? The question that frequently arises among cybersecurity experts is, “How can we effectively mitigate these risks?” One noteworthy strategy adopted by professionals across various industries, including financial services, healthcare, and travel, is the use of least privilege tactics. This approach is particularly valuable for organizations……
-
ResolverRAT Targets Healthcare and Pharmaceutical Sectors Through Sophisticated Phishing Attacks
A previously undocumented remote access trojan (RAT) named ResolverRAT has surfaced, specifically targeting healthcare and pharmaceutical organizations worldwide. First observed as recently as March 10, 2025, this malware distinguishes itself from related threats like Rhadamanthys and Lumma through its sophisticated in-memory execution and multi-layered evasion techniques. Morphisec, a leading cybersecurity firm, has detailed the malware’s…
-
Cyberangriff auf ein Krankenhaus auf den Cayman Islands
Cyberattack cripples doctor’s hospital systems First seen on caymanmarlroad.com Jump to article: caymanmarlroad.com/2025/04/28/cyberattack-cripples-doctors-hospital-systems/
-
Cybersecurity CEO accused of running malware on hospital PC blabs about it on LinkedIn
Sometimes, silence is the best option First seen on theregister.com Jump to article: www.theregister.com/2025/04/28/infosec_ceo_accused_of_installing_malware/
-
Your NHIDR Is Getting Better”, How?
Why Does Improving Non-Human Identity and Data Response (NHIDR) Matter? How often do we consider the impact of Non-Human Identities (NHIs) on our data security? The management of NHIs and their accompanying secrets has become an indispensable necessity for businesses. From financial services and healthcare to travel and DevOps, professionals across various domains are realizing……
-
Cybersecurity CEO Charged with Installing Malware on Hospital Computers
Jeffrey Bowie, the CEO of cybersecurity company Veritaco, was seen on security camera footage walking into St. Anthony Hospital in Oklahoma City last year and installing malware on an employee computer. He was arrested this month for violating the state’s cybercrime statute. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/04/cybersecurity-ceo-charged-with-installing-malware-on-hospital-computers/
-
Cybersecurity Firm CEO Arrested for Planting Malware in Hospital Systems
Jeffrey Bowie, the CEO of a local cybersecurity firm, has been arrested for allegedly planting malware on computers at SSM St. Anthony Hospital. Bowie, who until recently touted himself as a leader in protecting businesses from cyber threats, now faces charges that he became the very threat he promised to prevent. Police say the incident…
-
New AI-Generated ‘TikDocs’ Exploits Trust in the Medical Profession to Drive Sales
AI-generated medical scams across TikTok and Instagram, where deepfake avatars pose as healthcare professionals to promote unverified supplements and treatments. These synthetic >>doctors
-
CEO of cybersecurity firm charged with installing malware on hospital systems
Veritaco CEO Jeffrey Bowie faces charges for allegedly installing malware on hospital computers, violating Oklahoma’s Computer Crimes Act. Jeffrey Bowie, CEO of the cybersecurity firm Veritaco, is facing two counts of violating Oklahoma’s Computer Crimes Act for allegedly infecting employee computers at the Oklahoma City St. Anthony Hospital. The man is accused of having installed…
-
Interlock Ransomware Say It Stole 1.5TB of DaVita Healthcare Data
Patients receiving critical kidney dialysis treatment from DaVita, a major healthcare provider, are now facing the possible exposure… First seen on hackread.com Jump to article: hackread.com/interlock-ransomware-stole-davita-healthcare-data/
-
Data breach at Connecticut’s Yale New Haven Health affects over 5 million
Yale New Haven Health is Connecticut’s largest healthcare provider. First seen on techcrunch.com Jump to article: techcrunch.com/2025/04/25/data-breach-at-connecticut-yale-new-haven-health-affects-over-5-million/
-
5 Reasons Organization Should Opt for Web App Pentest
The world that feeds us is digital, and web applications are the backbone of many organizations. Be it e-commerce, healthcare, BFSI, or any other industry, web apps store and process sensitive data on a daily basis. As the saying goes, ‘With great power comes great responsibility’, in the cybersecurity realm, it also comes with great……
-
6 types of risk every organization must manage, and 4 strategies for doing it
Tags: ai, attack, backup, best-practice, breach, business, compliance, control, cyber, cybersecurity, data, finance, framework, fraud, GDPR, governance, government, grc, hacker, healthcare, infrastructure, insurance, intelligence, law, mitigation, office, phishing, ransom, ransomware, regulation, risk, risk-assessment, risk-management, service, startup, strategy, technology, threat, training, vulnerabilityCybersecurity risks Threats such as data breaches, phishing attacks, system intrusions, and broader digital vulnerabilities fall under the umbrella of security risks. The definition of cybersecurity risk is constantly evolving, now encompassing threats related to artificial intelligence and AI-driven systems.If you’re trying to mitigate risks in this area, you need to think not just about…
-
Cyberangriff auf ein Krankenhaus auf Malta
Saint James Hospital targeted in cyberattack, medical appointments proceeding normally First seen on maltatoday.com.mt Jump to article: www.maltatoday.com.mt/news/national/134670/saint_james_hospital_targeted_in_cyberattack_medical_appointments_proceeding_normally
-
Client-Side Security Breach Alert: Blue Shield of California Exposes 4.7 Million Members’ Health Data Through Web Analytics Configuration
by Source Defense A recent incident at Blue Shield of California highlights the critical importance of client-side security controls when implementing third-party scripts on healthcare websites. The nonprofit health plan has disclosed a significant data breach affecting 4.7 million members, stemming from a misconfiguration of Google Analytics on their web properties between April 2021 and…
-
Yale New Haven Health (YNHHS) data breach impacted 5.5 million patients
Yale New Haven Health (YNHHS) announced that threat actors stole the personal data of 5.5 million patients in a cyberattack. Yale New Haven Health (YNHHS) disclosed a data breach that exposed personal information of 5.5 million patients following a cyberattack that occurred earlier this month. Yale New Haven Health System (YNHHS) is a nonprofit healthcare…
-
ELENOR-corp Ransomware Targets Healthcare Sector
ELENOR-corp ransomware, a new version of Mimic, is targeting healthcare organizations using advanced capabilities First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/elenor-corp-ransomware-targets/
-
Frederick Health data breach impacts nearly 1 million patients
A ransomware attack in January at Frederick Health Medical Group, a major healthcare provider in Maryland, has led to a data breach affecting nearly one million patients. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/frederick-health-data-breach-impacts-nearly-1-million-patients/
-
GitGuardian Joins Health-ISAC: Strengthening Cybersecurity in Healthcare Through Secrets Detection
As cyber threats in healthcare continue to evolve, GitGuardian strengthens its commitment to the sector by joining Health-ISAC and offering members enhanced secrets detection capabilities to protect sensitive data. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/04/gitguardian-joins-health-isac-strengthening-cybersecurity-in-healthcare-through-secrets-detection/
-
Automating Zero Trust in Healthcare: From Risk Scoring to Dynamic Policy Enforcement Without Network Redesign
The Evolving Healthcare Cybersecurity Landscape Healthcare organizations face unprecedented cybersecurity challenges in 2025. With operational technology (OT) environments increasingly targeted and the convergence of IT and medical systems creating an expanded attack surface, traditional security approaches are proving inadequate. According to recent statistics, the healthcare sector First seen on thehackernews.com Jump to article: thehackernews.com/2025/04/automating-zero-trust-in-healthcare.html