June 25, 2024 at 08:49PM Geisinger, a healthcare provider, suspects a former Nuance Communications employee, now arrested and facing federal charges, of stealing highly personal data on over a million of its patients. Nuance failed to revoke the ex-employee’s access to corporate files post-termination, leading to the security breach. However, it was undisclosed if charges … Read more
May 28, 2024 at 07:03AM Pharmacy prescription services provider A&A Services, known as Sav-Rx, is notifying 2.8 million individuals of a cyberattack compromising personal information. Though patient care wasn’t disrupted, non-clinical system data was accessed, including names, addresses, email/phone numbers, and Social Security/insurance ID data. The company is not disclosing whether ransomware was used but … Read more
May 23, 2024 at 07:22AM San Antonio healthcare provider CentroMed is notifying 400,000 patients of a recent cyberattack that compromised personal and health data. The breach, discovered on May 1, exposed names, addresses, medical details, financial information, and Social Security numbers. This is the second attack in a year, with the prior incident affecting 350,000 … Read more
May 8, 2024 at 05:33PM Ascension, a major U.S. nonprofit health system with 140 hospitals and 40 senior care facilities across 19 states and the District of Columbia, has detected a cybersecurity event, prompting the organization to advise business partners to suspend connections to its systems. The incident has disrupted clinical operations, and an investigation … Read more
April 29, 2024 at 11:27AM Kaiser Permanente notifies 13.4 million patients of a data breach involving exposure of personal information to third-party advertisers. The leaked data includes names, IP addresses, and health-related search terms, but not sensitive financial information. Following an internal investigation, the organization has removed tracking technologies and added safeguards to prevent future … Read more
April 10, 2024 at 07:24AM GHC-SCW notified over 530,000 individuals of a ransomware attack leading to the theft of personal information, including sensitive health and personal data. The attackers, a foreign ransomware gang, claimed responsibility. The cooperative has enhanced security measures and is collaborating with authorities to mitigate risks. The cybercrime group BlackSuit is suspected … Read more
April 2, 2024 at 04:01PM The initiative aims to support healthcare entities dealing with rising cybersecurity challenges by offering additional resources and improved strategies. Based on the meeting notes, the key takeaway is that the initiative aims to offer increased resources and improved strategies to healthcare organizations dealing with growing cybersecurity challenges. Full Article
March 13, 2024 at 04:22PM The U.S. Department of Health and Human Services is investigating a ransomware attack on UnitedHealthcare Group (UHG) subsidiary Optum, which affected the Change Healthcare platform. The attack, attributed to the BlackCat ransomware gang, compromised sensitive health information of millions, impacting operations in the U.S. healthcare industry. The investigation follows claims … Read more
March 8, 2024 at 09:39AM Change Healthcare has begun the process of recovering from the ransomware attack by restoring its electronic prescription services. The first services are live, with more expected in the coming weeks. The outage has impacted healthcare providers, leading to payment issues. The ransomware gang responsible may be closing down, possibly in … Read more
March 4, 2024 at 04:08PM ALPHV/BlackCat, responsible for the Change Healthcare cyberattack, received over $22 million in Bitcoin, potentially a ransomware payment. UnitedHealth Group declined to confirm if ransom was paid. Change Healthcare’s systems were affected, disrupting services for 70,000+ American pharmacies and hospitals. The gang may have stolen the $22 million from their affiliates. … Read more