Tag: healthcare

Abu Dhabi Guidelines Offer Blueprint for Cybersecurity in Health

Mar 13, 2025 11:52 AM

Tags: attack, cybersecurity, healthcare, strategy

Following increasing attacks on healthcare organizations, the United Arab Emirates has refined its regulatory strategy for improving cybersecurity in healthcare. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/abu-dhabi-guidelines-offer-blueprint-cybersecurity-health
Smashing Security podcast #408: A gag order backfires, and a snail mail ransom demand

Mar 13, 2025 1:52 AM

Tags: dark-web, healthcare, mail, ransom, ransomware, threat

What happens when a healthcare giant’s legal threats ignite a Streisand Effect wildfire”¦ while a ransomware gang appears to ditch the dark web for postage stamps? First seen on grahamcluley.com Jump to article: grahamcluley.com/smashing-security-podcast-408/
$405 Million Forfeited: Texas Pharmacist’s Fraudulent Compound Cream Scheme Exposes Vulnerabilities in Healthcare Systems

Mar 12, 2025 4:52 PM

Tags: healthcare, vulnerability

A Texas pharmacist, Dehshid “David” Nourian, 62, of Plano, has been sentenced to 17 years and six months First seen on securityonline.info Jump to article: securityonline.info/405-million-forfeited-texas-pharmacists-fraudulent-compound-cream-scheme-exposes-vulnerabilities-in-healthcare-systems/
Separate US healthcare breaches impact over 560K

Mar 11, 2025 9:58 PM

Tags: breach, healthcare

First seen on scworld.com Jump to article: www.scworld.com/brief/separate-us-healthcare-breaches-impact-over-560k
HHS Investigators Get New Mission Under Trump: Root Out DEI

Mar 11, 2025 9:58 PM

Tags: healthcare, HIPAA, privacy

Stretched Agency Must Balance HIPAA Enforcement With Policing DEI in Healthcare. HHS investigators charged with protecting the civil rights and privacy of patients are now assigned to finding and stamping out diversity, equity and inclusion programs at universities and hospitals, with DEI now deemed discriminatory under the Trump administration. First seen on govinfosecurity.com Jump to…
15 Prozent der PCs im Gesundheitswesen fallen beim Security-Test durch

Mar 11, 2025 1:54 PM

Tags: healthcare, resilience

Die Studie »Resilience Obstacles in the Healthcare Industry« untersuchte die Telemetriedaten von über einer Million im Gesundheitswesen eingesetzten PCs. Dabei fanden die Analysten von Absolute Security heraus, dass den Endgeräten viel zu oft stabile Sicherheitsstrukturen fehlen, was Cyberkriminellen buchstäblich Tür und Tor zu den Infrastrukturen im Healthcare-Bereich öffnet. Warum ist das so? Die Resilienz-Studie… First…
Rhysida Hacking Group Strikes More Healthcare Providers

Mar 10, 2025 11:54 PM

Tags: breach, cybercrime, data, group, hacking, healthcare, service

Mental Health Provider, Kansas Clinics Are Latest Victims of Cybercriminal Gang. A Kansas-based medical practice and a Rhode lsland-based provider of mental health and addiction counseling and related services are the latest victims in a growing list of healthcare organizations reporting major data breaches by cybercriminal gang Rhysida. First seen on govinfosecurity.com Jump to article:…
How can I secure NHIs during rapid deployment cycles?

Mar 10, 2025 11:54 PM

Tags: finance, healthcare, service, soc

Are Your Machine Identities Adequately Protected During Rapid Deployment Cycles? Organizations across industries are leveraging the unprecedented benefits of the cloud. Financial services, healthcare, travel, and tech-driven sectors like DevOps and SOC teams are especially invested. However, this adoption isn’t without its unique set of challenges. One pertinent question is, how can organizations secure Non-Human……
Kansas healthcare provider says more than 220,000 impacted by cyberattack

Mar 10, 2025 10:54 PM

Tags: breach, cyberattack, cybersecurity, group, hacker, healthcare

Sunflower Medical Group said it initially discovered the breach on January 7 and hired a cybersecurity firm to investigate before it was discovered the hackers had been inside their systems since mid-December. First seen on therecord.media Jump to article: therecord.media/kansas-healthcare-provider-data-breach
Rhysida pwns two US healthcare orgs, extracts over 300K patients’ data

Mar 10, 2025 3:54 PM

Tags: data, healthcare

Terabytes of sensitive info remain available for download First seen on theregister.com Jump to article: www.theregister.com/2025/03/10/rhysida_healthcare/
RansomHouse gang claims the hack of the Loretto Hospital in Chicago

Mar 10, 2025 2:54 PM

Tags: breach, group, healthcare, ransomware, service

Another American hospital falls victim to a ransomware attack; the RansomHouse gang announced the hack of Loretto Hospital in Chicago.
560,000 People Impacted Across Four Healthcare Data Breaches

Mar 10, 2025 12:53 PM

Tags: breach, data, healthcare

Several healthcare organizations in different US states have disclosed data breaches affecting 100,000-200,000 individuals. The post 560,000 People Impacted Across Four Healthcare Data Breaches appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/560000-people-impacted-across-four-healthcare-data-breaches/
Are Efforts to Help Secure Rural Hospitals Doing Any Good?

Mar 7, 2025 10:53 PM

Tags: cyber, cybercrime, cybersecurity, healthcare, ransomware

Biden-Era Cyber Aid Programs Are Still Available, But Future is Uncertain. Even though rural hospitals and other small healthcare providers don’t have deep pockets, cybercriminals continue to target them with ransomware, often causing serious disruption and compromises affecting large swaths of patients. What can be done to help them strengthen cybersecurity? First seen on govinfosecurity.com…
How AI in Healthcare Can Speed Up Cyber Response

Mar 7, 2025 8:53 PM

Tags: ai, ciso, cyber, cybersecurity, healthcare, intelligence, tool

Artificial intelligence-based tools are among the most promising advancing technologies for healthcare sector organizations to help to address cybersecurity resource shortages, said Chris Tyberg, CISO of medical device and consumer health product manufacturer Abbott. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/how-ai-in-healthcare-speed-up-cyber-response-i-5463
Cybersecurity Snapshot: CSA Outlines Data Security Challenges and Best Practices, While ISACA Offers Tips To Retain IT Pros

Mar 7, 2025 8:53 PM

Tags: advisory, ai, awareness, banking, best-practice, business, cloud, compliance, corporate, crime, crypto, cve, cyber, cybercrime, cybersecurity, data, defense, exploit, extortion, finance, fraud, governance, government, group, healthcare, infrastructure, iot, jobs, mail, malicious, microsoft, mitigation, monitoring, network, nis-2, privacy, qr, ransom, ransomware, regulation, resilience, risk, risk-assessment, risk-management, scam, service, strategy, technology, threat, tool, vmware, vulnerability, vulnerability-management, zero-day

Check out best practices for shoring up data security and reducing cyber risk. Plus, get tips on how to improve job satisfaction among tech staff. Meanwhile, find out why Congress wants federal contractors to adopt vulnerability disclosure programs. And get the latest on cyber scams; zero-day vulnerabilities; and critical infrastructure security. Dive into six things…
Reshaping Healthcare – and Healthcare Cyber – With AI

Mar 7, 2025 7:53 PM

Tags: ai, ciso, cyber, cybersecurity, healthcare, intelligence

The use of artificial intelligence is not only reshaping healthcare delivery in the sector but also healthcare cybersecurity within organizations, said Anahi Santiago, CISO of ChristianaCare, the largest healthcare delivery organization in the state of Delaware. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/reshaping-healthcare-healthcare-cyber-ai-i-5465
Medusa Ransomware Claims 40+ Victims in 2025, Confirmed Healthcare Attacks

Mar 7, 2025 10:54 AM

Tags: attack, data, healthcare, leak, ransom, ransomware

Symantec found that Medusa has listed almost 400 victims on its data leaks site since early 2023, demanding ransom payments as high as $15m First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/medusa-claims-victims-2025/
What is risk management? Quantifying and mitigating uncertainty

Mar 7, 2025 7:53 AM

Tags: breach, business, cio, ciso, compliance, control, cyber, cyberattack, data, finance, flaw, framework, governance, healthcare, infosec, infrastructure, insurance, international, jobs, mitigation, monitoring, nist, risk, risk-analysis, risk-assessment, risk-management, software, strategy, technology, tool, vulnerability

How do organizations structure risk management operations?: Risk management has in some organizations traditionally been multicentric, with different departments or individuals within the org implementing risk management techniques in their work: Risk management is a component of good project management, for instance. IT leaders in particular must be able to integrate risk management philosophies and…
11 ruinöse Ransomware-Bedrohungen

Mar 7, 2025 6:53 AM

Tags: ai, apt, cloud, cyberattack, cybercrime, encryption, exploit, extortion, fortinet, healthcare, kritis, leak, linux, lockbit, malware, moveIT, phishing, ransomware, service, social-engineering, supply-chain, usa, vmware, vpn, vulnerability, windows, zero-day

Für Unternehmen ist Ransomware weiterhin eine existenzielle Bedrohung, für Kriminelle ein immer einträglicheres (Service)geschäft.Ransomware bleibt branchenübergreifend auf dem Vormarsch und entwickelt sich beständig weiter vereinzelten behördlichen Erfolgen zum Trotz. Das ist unter anderem auch folgenden Trends zuzuschreiben:Ransomware-as-a-Service (RaaS)-Angebote senken die Zugangsbarrieren.Neue Erpressungstaktiken versprechen noch mehr kriminelle Gewinne.Künstliche Intelligenz (KI) wird bei Cyberkriminellen immer beliebter.Davon abgesehen,…
Managing Legacy Medical Device and App Cyber Risks

Mar 6, 2025 11:53 PM

Tags: cyber, healthcare, mitigation, risk

Legacy apps and medical devices continue to pose persistent and considerable risk to healthcare IT environments, and many organizations are still unaware of their prevalence in their settings, said Keith Fricke, partner and principal consultant at tw-Security, who discusses mitigation steps to take. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/managing-legacy-medical-device-app-cyber-risks-i-5464
Healthcare organizations facing more sophisticated attacks

Mar 6, 2025 9:54 PM

Tags: attack, healthcare

First seen on scworld.com Jump to article: www.scworld.com/news/healthcare-organizations-facing-more-sophisticated-attacks
Healthcare Targeted By More Advanced Cyberattacks In The Past Year

Mar 6, 2025 9:54 PM

Tags: cyberattack, healthcare

First seen on scworld.com Jump to article: www.scworld.com/brief/healthcare-targeted-by-more-advanced-cyberattacks-in-the-past-year
Up to $75M needed to fix up rural hospital cybersecurity as ransomware gangs keep scratching at the door

Mar 6, 2025 6:53 PM

Tags: attack, cybersecurity, healthcare, ransomware

Attacks strike, facilities go bust, patients die. But it’s preventable First seen on theregister.com Jump to article: www.theregister.com/2025/03/06/rural_hospitals_cybersecurity/
Ransomware goes postal: US healthcare firms receive fake extortion letters

Mar 5, 2025 7:34 PM

Tags: access, attack, awareness, breach, ciso, communications, cybersecurity, dark-web, data, data-breach, defense, email, extortion, fraud, group, healthcare, law, mail, network, ransom, ransomware, scam, threat, unauthorized

Phantom extortion: Ransomware impersonation is nothing new. In 2019, organizations across the US reportedly received emails deploying the same fake breach modus operandi as the recent letter writers ‘pay up now because we have your data’. In truth, such campaigns are probably commonplace but are dismissed as obvious ruses and rarely reported on.However, by 2023…
Rural hospitals in US need to invest at least $70 million in cybersecurity, Microsoft finds

Mar 5, 2025 7:34 PM

Tags: authentication, cybersecurity, email, healthcare, microsoft, network

A survey of hundreds of rural facilities found nearly two-thirds struggle to implement basic email security, multifactor authentication and network segmentation. First seen on therecord.media Jump to article: therecord.media/rural-hospitals-need-millions-cyber
NHS investigating how API flaw exposed patient data

Mar 5, 2025 6:34 PM

Tags: api, data, data-breach, flaw, healthcare, programming, vulnerability

NHS patient data was left vulnerable by a flaw in an application programming interface used at online healthcare provider Medefer First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366620174/NHS-investigating-how-API-flaw-exposed-patient-data
Why Supply Chain Attacks Are The Biggest Threat To Businesses?

Mar 5, 2025 12:34 PM

Tags: attack, defense, healthcare, india, software, supply-chain, threat, usa

In 2024, approximately 183,000 customers worldwide were affected by supply chain attacks. In terms of frequency, the software supply chain experienced one attack every 48 hours. Surprisingly, India is among the most targeted countries, along with the USA, UK, Australia, Japan, and Germany. Manufacturing, healthcare, defense, and aerospace are among the most targeted sectors. Among……
The dirty dozen: 12 worst ransomware groups active today

Mar 5, 2025 10:34 AM

Tags: access, ai, alphv, apt, attack, backup, breach, cloud, cyber, cybercrime, dark-web, data, detection, email, encryption, endpoint, exploit, extortion, finance, government, group, healthcare, infrastructure, intelligence, korea, law, leak, linux, lockbit, malicious, malware, moveIT, network, north-korea, organized, phishing, ransom, ransomware, russia, service, social-engineering, software, strategy, threat, tool, usa, vmware, vulnerability, windows, zero-day

Black Basta: History: Black Basta appeared on the ransomware scene in early 2022 and is believed to be a spin-off from Conti, a group notorious for attacking major organizations.How it works: Black Basta usually deploys malware through exploitation of known vulnerabilities and social engineering campaigns. “Employees in the target environment are email bombed and then…
Conquering Cyber Risks Involving Web Browsers in Healthcare

Mar 5, 2025 12:34 AM

Tags: ciso, cyber, healthcare, Internet, risk

As clinicians move to a model of working anywhere, on many types of devices and under a variety of different internet environments, web browser security is a heightened concern, said John Frushour, vice president and CISO at New York Presbyterian Hospital and CyberEdBoard member. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/conquering-cyber-risks-involving-web-browsers-in-healthcare-i-5460
Mapping Health Sector Chokepoints Before the Next Big Attack

Mar 5, 2025 12:34 AM

Tags: attack, cyber, cybersecurity, healthcare, incident

The Healthcare Sector Coordinating Council is kicking off a health sector mapping initiative aimed at helping the ecosystem avoid massive disruptions in the event of major cyber incidents, said Greg Garcia, executive director of cybersecurity at the Healthcare Sector Coordinating Council. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/mapping-health-sector-chokepoints-before-next-big-attack-i-5452