215K Patients Affected in Latest Phishing Attacks in Healthcare

Utah Pathology Services and Dynasplint Systems are the latest victims of phishing attacks in healthcare. More details about the incidents are discussed below. Phishing Attacks in Healthcare: Utah Pathology Services Utah Pathology was targeted by hackers who used an employee’s email account to gain access to the healthcare organization’s network. On June 30, they discovered a breach when hackers tried to redirect [...]

2020-09-04T12:50:45-04:00September 4th, 2020|

A String of Healthcare Ransomware Attacks Affect Thousands

Several healthcare ransomware attacks have occurred over the past few months. Healthcare ransomware attacks occur when hackers access a healthcare organization’s patient data, demanding a sum of money for its return. The malicious encrypting of files leaves many organizations crippled in the months following an attack. Healthcare Ransomware Attacks: Parkview Medical Center April 21, 2020, Parkview Medical Center suffered a ransomware attack, targeting their electronic medical record (EMR) system. [...]

2020-05-05T12:45:34-04:00May 5th, 2020|

Be Careful Where You Click: COVID-19 Phishing Emails

There have been recent reports of hackers posing as the Center for Disease Control (CDC) and the World Health Organization (WHO) to bait people into clicking on phishing emails. A phishing email is an email that is sent by hackers, disguising themselves as a trusted individual, prompting recipients to click on a malicious link. Clicking on the malicious link allows hackers to access the recipient's email account. Although you [...]

2020-03-20T14:38:15-04:00March 19th, 2020|

What to Do and How to Prevent Ransomware Attacks

Ransomware attacks are the most common type of malware incident in the healthcare industry, with 85% of all malware incidents classified as ransomware. A ransomware attack occurs when a hacker gains access to an organization's network rendering data unusable until a sum of money is paid. In many cases, hackers maliciously encrypt the organization's files so that patient files cannot be accessed. For covered entities, the inability to access [...]

2020-03-02T14:30:35-05:00March 2nd, 2020|

HIPAA Network Security

For a HIPAA covered entity (i.e., a health provider), there is often a direct relationship between the health of the network and the health of the entity’s wallet, so to speak. A healthier network with strong security measures, is one less likely to be the subject of a complaint made to (and resultant fine assessed by) the Department of Health and Human Services’ (HHS) Office for Civil Rights. The [...]

2020-02-04T16:06:39-05:00January 23rd, 2020|

Ransomware Healthcare Epidemic Fueled by Insurance Companies

Healthcare entities are often the target of ransomware attacks. Ransomware attacks occur when a hacker enters an organization's network, encrypting or stealing sensitive data, demanding a sum of money for its return. In many instances, ransomware healthcare attacks need to be solved quickly, causing healthcare entities’ insurance companies to pay the ransom. Although this is helpful to the ransomware victim, it fuels ransomware healthcare attacks since hackers are almost [...]

2020-01-22T15:38:29-05:00January 22nd, 2020|

FBI Ransomware Guidance Issued

In early October of 2019, the Department of Justice issued FBI Ransomware Guidance. The FBI Ransomware Guidance is a public service announcement that contains updated information about the ransomware threat. This FBI Ransomware Guidance updates and is a companion to to Ransomware PSA I-091516-PSA posted on www.ic3.gov in 2016. What is Included in Latest FBI Ransomware Guidance? The FBI Ransomware Guidance begins with the definition of ransomware. Ransomware is [...]

2020-01-22T17:22:38-05:00December 23rd, 2019|

What is the Ryuk Ransomware Decryptor Bug?

In 2019 alone, at least 3 managed service providers (MSPs) have been attacked by Ryuk ransomware. A Russian-based eCrime group that calls itself “WIZARD SPIDER” has been operating the Ryuk ransomware since August 2018. This group has directed its attacks toward large, enterprise organizations in the hopes of receiving a large ransom sum. Victims of Ryuk ransomware have been using a decryptor to recover their data. However, a bug [...]

2020-01-03T15:56:57-05:00December 12th, 2019|

November Healthcare Breaches Affected More Than 400,000 Patients

Healthcare breaches reported to the Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) in November affected 443,344 patients. There were a total of 26 November healthcare breaches including 15 hacking / IT incidents, 7 incidents of unauthorized access / disclosure of protected health information (PHI), and 4 incidents due to theft.  Do you have an effective HIPAA compliance program? Find out now by completing the [...]

2020-01-03T15:44:18-05:00December 11th, 2019|

Average Ransomware Payment Amount Increases in 2019

Ransomware is a significant cybersecurity threat to healthcare organizations. Both the volume of ransomware attacks and the average ransomware payment amount have increased between December of 2018 to Q3 of 2019.  What is a Ransomware Payment? Ransomware is a form of malware that encrypts files on a victim’s computer or server, making them unusable. Cybercriminals demand a ransom in exchange for providing a key to decrypt the victim’s files. [...]

2020-01-02T15:38:53-05:00November 22nd, 2019|
Load More Posts