MediSecure Data Breach Impacts Patient and Healthcare Provider Information 

May 20, 2024 at 07:15AM MediSecure, an Australian digital prescription services provider, revealed that data stored on its systems until November 2023 was compromised in a recent ransomware attack. The incident, originating from a third-party provider, impacted personal and health information, related to prescriptions delivered through its system. The company assured that the cyber incident … Read more

Aussie cops probe MediSecure’s ‘large-scale ransomware data breach’

May 17, 2024 at 07:39PM Australian prescriptions provider MediSecure was hit by a ransomware attack, potentially compromising patients’ personal and health data. The incident is believed to have originated from a third-party vendor. Authorities are investigating the breach, and MediSecure is working with regulatory agencies and cybersecurity officials to manage the impact. This highlights a … Read more

MediSecure e-script firm hit by ‘large-scale’ ransomware data breach

May 16, 2024 at 01:09PM Australian e-prescription provider MediSecure shut down its website and phone lines after a ransomware attack from a third-party vendor. The incident has impacted personal and health information, affecting millions of eScripts. MediSecure is cooperating with authorities and has notified regulators. The cyberattack ranks as one of the worst in Australia’s … Read more

Researchers Uncover 11 Security Flaws in GE HealthCare Ultrasound Machines

May 16, 2024 at 06:42AM Security researchers disclosed almost a dozen vulnerabilities affecting GE HealthCare Vivid Ultrasound products, posing risk of ransomware implantation and patient data manipulation. Vulnerabilities require physical access to devices and range from hard-coded credentials to path traversal. Exploit chain can be used to execute arbitrary code. Other recent security flaws have … Read more

Notice of a Data Breach

May 15, 2024 at 05:21PM Hypertension-Nephrology Associates, P.C. discovered an extortion attack involving unauthorized access to sensitive patient information, including protected health information (PHI). The scope of the breach remains unclear, so the Practice is treating all PHI as potentially compromised. They are taking various measures to address the situation, including notifying potentially impacted individuals … Read more

Windows Quick Assist abused in Black Basta ransomware attacks

May 15, 2024 at 01:10PM Financially-motivated cybercriminals are exploiting the Windows Quick Assist feature for social engineering attacks, deploying Black Basta ransomware on victims’ networks. Microsoft, Rapid7, and other security firms have observed the tactics of the threat group Storm-1811 and advise network defenders to block or uninstall Quick Assist and train employees to recognize … Read more

900k Impacted by Data Breach at Mississippi Healthcare Provider

May 15, 2024 at 08:00AM Singing River Health System (SRHS) notified 900,000 individuals of a ransomware attack compromising personal info in August 2023. Attackers accessed names, addresses, SSNs, and medical data. SRHS informed Maine AGO of 895,204 individuals impacted and initiated containment, investigation, and additional safeguards. Impacted individuals receive 12 months free credit monitoring and … Read more

Singing River Health System: Data of 895,000 stolen in ransomware attack

May 14, 2024 at 04:13PM Singing River Health System reported a ransomware attack impacting 895,204 individuals. The health provider, with over 3,500 staff, operates multiple hospitals and other facilities in Mississippi. The breach exposed personal and medical data, attributed to the Rhysida ransomware gang. Affected persons are urged to enroll in credit monitoring, be cautious … Read more

Uncle Sam urges action after Black Basta ransomware infects Ascension

May 13, 2024 at 02:37PM Several US security agencies have issued advisories on the Black Basta ransomware gang, responsible for a recent attack on US healthcare provider Ascension. The group has targeted organizations across critical infrastructure sectors, including healthcare. Affected organizations are urged to apply recommended mitigations and report incidents to law enforcement. Ascension is … Read more

CISA: Black Basta ransomware breached over 500 orgs worldwide

May 13, 2024 at 10:19AM CISA and FBI reported that Black Basta ransomware affiliates breached over 500 organizations, encrypting and stealing data from critical infrastructure sectors. The gang targeted private industry and healthcare organizations in North America, Europe, and Australia. The advisory also includes tactics for defenders to mitigate ransomware risks, particularly for healthcare organizations. … Read more