September 19, 2024 at 04:39PM Inc ransomware, linked to the group Vanilla Tempest, is increasingly targeting American healthcare organizations. Microsoft’s Threat Intelligence Center (MSTIC) raised concerns over the group’s use of Inc ransomware for double extortion attacks. Healthcare, due to its valuable data and vulnerability, remains a prime target for such cyber threats. The sophisticated … Read more
September 19, 2024 at 02:45PM Microsoft has reported that the ransomware affiliate Vanilla Tempest is now targeting U.S. healthcare organizations, using the INC ransomware. Vanilla Tempest gained network access by deploying malware and backdooring systems, leading to disruptions in IT and phone systems and causing loss of patient information. Vanilla Tempest has a history of … Read more
September 19, 2024 at 08:24AM The healthcare industry faces a critical need for cybersecurity due to increasing cyberattacks, with ransomware holding hospitals’ systems hostage and causing patient care disruptions. Poor cybersecurity hygiene exposes vulnerabilities, leading to devastating consequences. Healthcare organizations can improve by continuous monitoring, 24×7 security operations, third-party risk management, regular patching and encryption, … Read more
September 18, 2024 at 03:05PM Microsoft has identified the ransomware affiliate Vanilla Tempest targeting U.S. healthcare organizations in INC ransomware attacks. Based on the meeting notes, it seems that Microsoft has stated that a ransomware affiliate known as Vanilla Tempest is now targeting U.S. healthcare organizations in INC ransomware attacks. This suggests a heightened threat … Read more
September 6, 2024 at 04:11PM CISA warned about vulnerabilities in healthcare and manufacturing industries’ industrial control systems. Baxter’s Connex Health Portal had severe vulnerabilities, including unauthorized access and SQL injection, and Mitsubishi Electric’s MELSEC had denial-of-service vulnerabilities. CISA advised organizations to update their systems and minimize network exposure due to the increasing cyber threats facing … Read more
August 19, 2024 at 06:06AM Jewish Home Lifecare, now known as The New Jewish Home, revealed a data breach affecting over 100,000 individuals, with hackers potentially accessing sensitive information including personal and financial details. The organization is offering credit monitoring services, although there is no current evidence of fraudulent activity. The cybercriminal group, BlackCat, claimed … Read more
August 14, 2024 at 06:57AM Healthcare provider Kootenai Health in Idaho reported a data breach affecting over 460,000 individuals’ personal and health information. The breach, linked to the 3AM ransomware gang, involved unauthorized access to the network and the exfiltration of sensitive data. Affected individuals are receiving 12 months of credit and identity protection services. … Read more
July 29, 2024 at 09:52AM US fintech firm HealthEquity admitted a data security event in June affecting 4.3 million individuals. The breach began in March and was detected in June. Stolen information includes addresses, phone numbers, and payment data. HealthEquity took immediate steps to address the breach and is offering credit monitoring and identity theft … Read more
July 8, 2024 at 09:57AM Geisinger, a Pennsylvania healthcare provider, is being sued for a data breach after a former Nuance employee accessed the personal information of 1.2 million individuals. The breached data included names, addresses, and medical record numbers, but no financial details. The former employee has been arrested, and a class action lawsuit … Read more
July 5, 2024 at 01:03PM The aftermath of Qilin’s ransomware attack on Synnovis caused widespread disruptions in medical procedures across London hospitals. One of the most affected individuals was Johanna Groothuizen, who had to undergo a last-minute change in her surgery, ultimately resulting in a simple mastectomy instead of the planned skin-sparing mastectomy. The cyberattack’s … Read more