HHS Stresses Importance of Having an Effective Cybersecurity Incident Response Plan

The Health Sector Cybersecurity Coordination Center (HC3) has published a threat brief that highlights the importance of developing an effective cybersecurity incident response plan.

Read More »

Victim Count Doubles in Heart Institute Data Theft Hack

The number of people affected by a Tennessee cardiac care clinic hack has more than doubled to 411,000 since the healthcare group first reported the incident to regulators in July.

Read More »

Explosion in Breach of Healthcare Data

Health data breaches reported to HHS’s Office for Civil Rights have soared in 2023, on pace to double last year’s total, according to a POLITICO analysis of the latest agency…

Read More »

Ohio AG Announces Data Breach Settlement with Healthcare Clearinghouse

Ohio Attorney General Dave Yost and 32 of his counterparts announced that a settlement has been reached with Inmediata over the three-year exposure of the protected health information of 1.5…

Read More »

NoEscape Ransomware Emerges, Targeting Healthcare

The Health Sector Cybersecurity Coordination Center (HC3) issued an analyst note regarding NoEscape ransomware, a new threat to healthcare and other industries. Read more here.

Read More »

McLaren Health Care Ransomware Attack May Affect up to 2.5 Million Patients

McLaren Health Care, a 15-hospital health system based in Grand Blanc, Michigan, has confirmed that it recently fell victim to a ransomware attack and has warned patients that files containing…

Read More »

Two or More Ransomware Variants Impacting the Same Victims and Data Destruction Trends

The Federal Bureau of Investigation (FBI) has released a Private Industry Notification to highlight emerging ransomware trends and encourage organizations to implement the recommendations in the “Mitigations” section to reduce…

Read More »

FBI and CISA Release Advisory on Snatch Ransomware

On September 21, 2023, the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) released joint Cybersecurity Advisory (CSA) #StopRansomware: Snatch Ransomware, which provides indicators of…

Read More »

Personal Information of Thousands of Imaging Vendor Patients Potentially Compromised

The imaging vendor Sanford Health uses for its mobile heart screen trucks, DMS Health Technologies, experienced a data security incident between March 27 and April 24, 2023.

Read More »

OCR Presents: How the Security Rule Can Help Defend against Cyber-Attacks

The HHS Office for Civil Rights (OCR) will be producing a pre-recorded webinar for HIPAA covered entities and business associates (collectively, “regulated entities”) discussing how the Security Rule can help…

Read More »