Healthcare providers including NYU Langone University Hospital Long Island in New York and others around the world are reeling today in the wake of a reported ransomware attack on human resources services giant UKG. The breach affects services on the Kronos Private Cloud including UKG Workforce Central, UKG TeleStaff, Healthcare Extensions, and Banking Scheduling Solutions. It is unknown if electronic protected health information [...]
October was Cybersecurity Awareness Month, but that didn’t stop healthcare breaches from surging with 2,817,162 patients affected by breaches last month. The vast majority of 2021 October healthcare breaches were hacking incidents targeting healthcare providers. There were a total of 49 healthcare breaches listed on the OCR breach portal in October: Type of entity breached 37 healthcare providers reported incidents (2,261,319 patients, 80.27% of total patients affected) 6 [...]
Several major health systems have reported an onslaught of phishing, spoofing, and ransomware incidents. While these healthcare cyber attacks use different tactics, they all have the same end goal - to steal sensitive patient information. Phishing Attack Targets UMass Memorial Health UMass Memorial Health recently informed patients that their protected health information (PHI) was potentially compromised in a healthcare cyber attack stemming [...]
The Department of Health and Human Services (HHS) Office for Civil Rights (OCR) publicly posts breaches affecting 500 or more patients to their online breach portal, known as the “HIPAA Wall of Shame.” In August 2021, there were 38 breaches posted on the portal, affecting 5,120,289 patients. August 2021 healthcare breaches predominantly consisted of hacking incidents affecting healthcare providers, with 4,656,453 patients affected by hacking incidents [...]
As hackers become more sophisticated, it is important to keep up to date with new threats. There are two new threats that are concerning in that they are difficult to recognize and detect. One of these threats is a very convincing phishing scam, while the other is a malicious encryption scheme that evades ransomware detection software. Although these are not necessarily healthcare cybersecurity threats, they target businesses across [...]
On July 16, 2021, the Campbell, Conroy & O’Neil law firm published a press release revealing that they had been targeted by a PHI ransomware attack in February 2021. Upon discovering the incident, Campbell contracted a third-party forensic firm to determine the nature and scope of the incident. The investigation determined that an unauthorized party had gained access to Campbell’s sensitive information, [...]
Wolfe Eye Clinic, based in Iowa, suffered a cyberattack that gave hackers access to their patient files. The eye care cyberattack potentially affected 500,000 patients that had been treated by the clinic. More details are discussed below. How Did the Eye Care Cyberattack Occur? It was recently announced that, on February 8, 2021, Wolfe Eye Clinic discovered that an unauthorized party had [...]
Ransomware attacks continue to rise, especially those targeting healthcare organizations. Hackers often target healthcare organizations in ransomware attacks to disrupt operations in hopes that the organization will pay a ransom. Healthcare organizations are also targeted in data theft incidents because patient information can be extremely valuable on the black market. This is why it has never been more important to protect your organization by improving your healthcare security. [...]
On April 20, 2021, Elekta, a cancer software provider, was targeted by a healthcare ransomware attack. Through the attack, hackers were able to access Elekta’s cloud-based software, used to operate radiology equipment. As a result of the incident, Elekta temporarily took their software offline, preventing treatment for cancer patients across 170 U.S. health systems. More details on the healthcare vendor ransomware attack are discussed. What We Know About [...]
The Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) publicly posts breaches affecting 500 or more patients to its breach portal. There were 45 incidents reported in February 2021 affecting 1,234,943 patients. 35 of these incidents targeted healthcare providers, representing 82.29% of affected patients. 5 of these incidents targeted health plans, representing 13.64% of affected patients. 5 of these incidents targeted business associates, representing [...]
© 2023 Compliancy Group LLC. All Rights Reserved | Terms of Use | Privacy Policy
