Tag: healthcare
-
Change Healthcare Data Breach Impact Grows to 190 Million Individuals
The impact of the Change Healthcare ransomware-caused data breach has increased from 100 million to 190 million individuals. The post Change Healthcare Data Breach Impact Grows to 190 Million Individuals appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/change-healthcare-data-breach-impact-grows-to-190-million-individuals/
-
Change Healthcare Breach Almost Doubles in Size to 190 Million Victims
Change Healthcare has claimed 190 million customers were affected by a mega-breach last year First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/change-healthcare-breach-doubles/
-
Cybersecurity needs women, and it needs to treat them better
Tags: cio, ciso, computer, cyber, cyberattack, cybersecurity, data-breach, group, healthcare, jobs, service, skills, technology, trainingThe participation of women in cybersecurity is vital, a non-negotiable proposition. Forget any current handwringing over diversity and equity; it’s fundamental that the contribution of women to the profession has made cybersecurity better.The proverbial door was kicked open long ago for women, who have made major contributions to the development of information security. But it’s…
-
State and Federal Healthcare Cyber Regs to Watch in 2025
Under the Trump administration, the proposed update to the HIPAA Security Rule – issued in the final weeks of the Biden administration – is likely to get trimmed but not totally cut, predicts regulatory attorney Sharon Klein of the law firm Blank Rome. What else should the health sector expect? First seen on govinfosecurity.com Jump…
-
Trump disbands Cyber Safety Review Board, Salt Typhoon inquiry in limbo
Tags: advisory, ai, attack, china, cisa, crowdstrike, cyber, cybersecurity, government, group, hacking, healthcare, incident, infrastructure, microsoft, network, ransomware, sbom, service, technology, threat, vulnerabilityThe administration of US President Donald Trump has dismissed all members of its Cyber Safety Review Board (CSRB), including those investigating the China-linked hacking group Salt Typhoon. Other groups affected by a general clear-out include the AI Safety and Security Board and the National Security Telecommunications Advisory Committee.Cybersecurity experts have expressed concern about the move,…
-
Trump administration disbands DHS board investigating Salt Typhoon hacks
Tags: advisory, ai, attack, china, cisa, crowdstrike, cyber, cybersecurity, government, group, hacking, healthcare, incident, infrastructure, microsoft, network, ransomware, sbom, service, technology, threat, vulnerabilityThe administration of US President Donald Trump has dismissed all members of its Cyber Safety Review Board (CSRB), including those investigating the China-linked hacking group Salt Typhoon. Other groups affected by a general clear-out include the AI Safety and Security Board and the National Security Telecommunications Advisory Committee.Cybersecurity experts have expressed concern about the move,…
-
EU Commission Calls for Health Sector ‘Cyber Action Plan’
Initiative Aims to Bolster Security of EU Member Hospitals, Healthcare Providers. The European Commission has a new action plan to strengthen cybersecurity of hospitals and other healthcare providers in the European Union amid rising cyberthreats and attacks. The plan includes a cybersecurity support center to offer guidance and other resources to the EU’s health sector.…
-
Account Compromise and Phishing Top Healthcare Security Incidents
Netwrix claims 84% of healthcare organizations detected a cyber-attack in the past year First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/account-compromise-phishing/
-
Healthcare Cybersecurity: The Chronic Condition We Can’t Ignore
Cyber breaches in healthcare are chronic conditions that can linger for years, quietly draining resources and eroding trust. Imagine a chronic disease. There’s the immediate crisis phase that demands urgent attention”, medication, hospital stays, or even surgery. But long after those acute symptoms subside, the condition requires ongoing care and monitoring. Cyberattacks follow a similar…
-
EU Commission Calls for Health Sector Cyber ‘Action Plan’
Initiative Aims to Bolster Security of EU Member Hospitals, Healthcare Providers. The European Commission has a new action plan to strengthen cybersecurity of the hospitals and other healthcare providers in the European Union from rising cyberthreats and attacks. The plan includes a cybersecurity support center to offer guidance and other resources to the EU’s health…
-
AI Mistakes Are Very Different from Human Mistakes
Humans make mistakes all the time. All of us do, every day, in tasks both new and routine. Some of our mistakes are minor and some are catastrophic. Mistakes can break trust with our friends, lose the confidence of our bosses, and sometimes be the difference between life and death. Over the millennia, we have…
-
EU to take aim at healthcare cyber threat
Tags: attack, cyber, cyberattack, cybercrime, cybersecurity, data, data-breach, extortion, healthcare, malicious, ransomware, service, threat, toolThe European Commission is presenting an action plan to strengthen cybersecurity in healthcare as one of its key priorities in the first 100 days of the commission’s new mandate.The healthcare sector has been under increasing pressure from cyberattacks in the past few years, with 309 cybersecurity incidents reported by member states in 2023. Ransomware tops…
-
Information Security Manual (ISM)
What is the Information Security Manual (ISM)? The Information Security Manual (ISM) is a cybersecurity framework developed by the Australian Signals Directorate (ASD) to help organizations protect their IT and operational technology systems, applications, and data from cyber threats. The ISM is relevant to industries like government, defense, finance, healthcare, and other sectors where sensitive……
-
How organizations can secure their AI code
Tags: ai, application-security, awareness, backdoor, breach, business, chatgpt, ciso, compliance, control, credentials, crime, cybersecurity, data, data-breach, finance, github, healthcare, LLM, malicious, ml, open-source, organized, programming, risk, risk-management, software, startup, strategy, supply-chain, technology, tool, training, vulnerabilityIn 2023, the team at data extraction startup Reworkd was under tight deadlines. Investors pressured them to monetize the platform, and they needed to migrate everything from Next.js to Python/FastAPI. To speed things up, the team decided to turn to ChatGPT to do some of the work. The AI-generated code appeared to function, so they…
-
Cyber Essentials NHS and Healthcare Organisations
What is Cyber Essentials? Cyber Essentials scheme is a UK government-backed initiative designed to help organisations, large or small, shield themselves from common cyber threats. It outlines a straightforward set of technical security controls that, when appropriately implemented, can reduce an organisation’s attack surface. This is particularly vital for NHS and healthcare organisations. They handle……
-
No new funding in EU plan to tackle ransomware attacks against hospitals
The European Commission has a new “action plan” to reduce the health sector’s vulnerability to cyberattacks. For funding, it only offers healthcare entities guidance on opportunities available elsewhere. ]]> First seen on therecord.media Jump to article: therecord.media/ransomware-hospitals-european-commission-plan
-
UnitedHealth hid its Change Healthcare data breach notice for months
The ransomware attack on Change Healthcare affected over 100 million Americans, the health giant told regulators. First seen on techcrunch.com Jump to article: techcrunch.com/2025/01/15/unitedhealth-hid-its-change-healthcare-data-breach-notice-for-months/
-
OneBlood Notifying Donors Affected by 2024 Ransomware Hack
Attack on Blood Center Spotlights Ongoing Supply Chain Risk in Healthcare Sector. Six months after a ransomware attack temporarily crippled its blood donation and distribution activities, Florida-based nonprofit OneBlood is reporting a data breach to regulators that affected donors’ personal information. Why is the incident reawakening healthcare supply chain concerns? First seen on govinfosecurity.com Jump…
-
HIPPA Updates Loom as Healthcare Breaches Boom: Prevent and Protect with Microsegmentation
First seen on scworld.com Jump to article: www.scworld.com/perspective/hippa-updates-loom-as-healthcare-breaches-boom-prevent-and-protect-with-microsegmentation
-
HHS Proposes Major Overhaul of HIPAA Security Rule in the Wake of Change Healthcare Breach
The new rules come in the wake of the Change Healthcare breach, which exposed the electronic personal health information of about 100 million Americans. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/01/hhs-proposes-major-overhaul-of-hipaa-security-rule-in-the-wake-of-change-healthcare-breach/
-
UK proposes banning hospitals and schools from making ransomware payments
The proposed rules would ban public sector bodies in the UK from making extortion payments and require all victims to report ransomware incidents to the government.]]> First seen on therecord.media Jump to article: therecord.media/uk-proposes-banning-ransoms-hospitals
-
Feds Tell Health Sector to Watch for Bias in AI Decisions
HHS OCR Letter Also Reminds Entities That AI Tool Use Must Comply with HIPAA. Federal regulators are reminding healthcare providers, insurers and other regulated firms of their duty to ensure that AI and other emerging technologies for clinical decision making and patient support are not used in a discriminatory manner – and comply with HIPAA.…
-
CISOs embrace rise in prominence, with broader business authority
Tags: ai, attack, business, ceo, cio, ciso, compliance, control, corporate, cyber, cyberattack, cybersecurity, data, governance, healthcare, infrastructure, intelligence, network, privacy, regulation, risk, risk-management, security-incident, strategy, technology, threat, updateIt’s a familiar refrain: As cybersecurity has become a core business priority, it is no longer a siloed operation, and the responsibilities of CISOs have grown, giving them greater prominence within the organization.According to CSO’s 2024 Security Priorities Study, 72% of security decision-makers say their role has grown to include additional responsibilities over the past…
-
The Future of CISA in Healthcare in the New Administration
Many important efforts by the Cybersecurity Infrastructure and Security Agency to help the healthcare sector and other critical infrastructure sectors bolster their cybersecurity are likely to continue under the incoming Trump administration, predicted CISA Deputy Director Nitin Natarajan. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/future-cisa-in-healthcare-in-new-administration-i-5437
-
Hands-On Walkthrough: Microsegmentation For all Users, Workloads and Devices by Elisity
Network segmentation remains a critical security requirement, yet organizations struggle with traditional approaches that demand extensive hardware investments, complex policy management, and disruptive network changes. Healthcare and manufacturing sectors face particular challenges as they integrate diverse endpoints from legacy medical devices to IoT sensors onto their production networks. First seen on thehackernews.com Jump to article:…