Healthcare IT Today

JANUARY 30, 2025

Prevention is essential, but when the inevitable outage from a ransomware attack or other disruption occurs, healthcare delivery organizations need to minimize the impact on processes that enable them to care for patients, bill for services, order supplies, and pay staff.

Hospitals 71

Hospitals Compliance Governance Ransomware 71

HIT Consultant

MARCH 4, 2025

There will undoubtedly be surprises like that in 2025 as well, so its important for healthcare organizations to assess the likeliest threats in order to chart a successful path forward. Here are 10 cybersecurity threats and developments that merit special attention in 2025: 1. Theres also a lot of action at the state level.

Hospitals 59

Hospitals Ransomware Fraud Telemedicine 59

Compliancy Group

MARCH 25, 2025

In yet another alarming month for healthcare cybersecurity, 1,238,201 patients had their personal and medical information exposed due to 46 data breaches in February 2025. If Februarys data is any indication, 2025 is shaping up to be another challenging year for healthcare cybersecurity.

Ransomware 52

Ransomware Compliance Hospitals 52

HIPAA Journal

MARCH 31, 2025

It is unclear if ransomware was used, but data was exfiltrated and is being used in extortion attempts against the affected providers. Some of those providers have reportedly received ransom demands from a threat actor called Andrew who claims he is not affiliated with any known ransomware group.

Hospitals 92

Hospitals Ransomware HIPAA 92

Compliancy Group

JANUARY 16, 2025

In mid-January of 2025, the Department of Health and Human Services Office for Civil Rights announced a $10,000 settlement agreement with Michigan-based Northeast Surgical Group, P.C. The settlement marks OCRs 10th ransomware enforcement action, and the 4th enforcement action in OCRs risk analysis initiative.

HIPAA 96

HIPAA Ransomware Compliance 96

HIT Consultant

JANUARY 24, 2025

What You Should Know: – Fortified Health Security , a managed security services provider (MSSP) specializing in healthcare cybersecurity released its 2025 Horizon Report. – The semiannual publication provides valuable insights into the latest cybersecurity trends, threats, and solutions for healthcare organizations.

Ransomware 115

Ransomware 115

HIPAA Journal

MARCH 5, 2025

The upward trend in ransomware attacks in 2024 has continued in 2025 with large numbers of new victims added to ransomware groups data leak sites in January and February. victims were added to data leak sites, with the victim count rising to 378 in 2025. Over the first five weeks of 2024, 282 new U.S.

Ransomware 63

Ransomware HIPAA 63

HIPAA Journal

APRIL 15, 2025

The kidney dialysis giant DaVita has fallen victim to a ransomware attack that resulted in encryption of parts of its network. The attack occurred on Saturday, April 12, 2025, and is impacting some of its operations, according to a Monday, April 14, 2025, 8K filing with the U.S. Securities and Exchange Commission (SEC).

Ransomware 79

Ransomware HIPAA 79

HIT Consultant

FEBRUARY 11, 2025

– Ransomware Remains a Threat: Ransomware continued to be a major disruptor, accounting for 66.7% Attackers are increasingly leveraging third-party vulnerabilities to amplify the impact of ransomware attacks. of known attack methods.

Ransomware 69

Ransomware HIPAA 69

HIT Consultant

NOVEMBER 12, 2024

in 2025 and 3% by 2029. Reduce ransomware attack surface We all know that ransomware is continuing to cause enormous financial pain for organizations that in some cases must pay up or close their doors. They are also, meanwhile, storing the data in a way that prevents any changes to the data – thwarting ransomware actors.

Ransomware 104

Ransomware Licensing Health Insurance Hospitals 104

HIPAA Journal

MARCH 27, 2025

28% of imaging systems analyzed by Claroty contained KEVs, with 11% having KEVs linked to ransomware campaigns. 8% of those imaging systems had KEVs linked to ransomware and insecure connectivity, making them an easy target for ransomware actors. The industrial cybersecurity platform provider Claroty analyzed more than 2.25

Ransomware 52

Ransomware Hospitals FDA HIPAA 52

HIPAA Journal

APRIL 16, 2025

On December 22, 2023, Retina Group of Washington, a healthcare provider with eye care clinics in Maryland and Virginia, issued notifications about a ransomware attack on March 26, 2023. The settlement has received preliminary approval from the court, and the final fairness hearing has been scheduled for June 9, 2025.

Ransomware 56

Ransomware Fraud Licensing HIPAA 56

HIPAA Journal

MARCH 11, 2025

The Rhysida ransomware group has claimed responsibility for the attack and has added Sunflower Medical Group to its data leak site. On January 30, 2025, a program office inadvertently attached a spreadsheet to an email, when the intention was to attach a flyer for an upcoming event.

Department of Veterans Affairs 81

Department of Veterans Affairs Licensing Ransomware Fraud 81

Healthcare IT Today

APRIL 20, 2025

News Outpatient dialysis center operator DaVita reported a ransomware attack to the SEC last week. Because theres so much happening out there in healthcare IT we arent able to cover in our full articles, we still want to make sure youre informed of all the latest news, announcements, and stories happening to help you better do your job.

Nurses 75

Nurses Ransomware FDA Compliance 75

Healthcare IT Today

FEBRUARY 9, 2025

News A ransomware attack hit New York Blood Center , described by TechCrunch as one of the largest nonprofit blood centers in the U.S., on January 26; fortunately, the organization was back to regularly scheduled services by February 3.

Ransomware 72

Ransomware Hospitals 72

HIPAA Journal

MARCH 25, 2025

In March 2024, Numotion was the victim of a ransomware attack. The Numotion ransomware attack involved unauthorized access to the data of 602,265 individuals between February 29, 2024, and March 2, 2024. This is not the only breach of this magnitude to be experienced by Numotion.

Ransomware 66

Ransomware HIPAA Licensing Health Insurance 66

HIPAA Journal

APRIL 15, 2025

True Dental Care for Kids and Adults, Pennsylvania True Dental Care for Kids and Adults LLC in Pennsylvania has started notifying 17,640 individuals about a recent ransomware attack. A hacker gained access to its network on February 3, 2025, and downloaded ransomware, which was used to encrypt files on its network.

Ransomware 67

Ransomware Electronic Medical Records HIPAA Health Insurance 67

HIPAA Journal

APRIL 18, 2025

The document review was completed on January 30, 2025, when it was confirmed that the exposed information included first and last names, clinical/treatment information, medical provider names, medical record numbers, and patient account numbers. Notification letters were mailed to the affected individuals two months later, on March 31, 2025.

Ransomware 52

Ransomware Hospitals HIPAA Health Insurance 52

Healthcare IT Today

JANUARY 7, 2025

Public comments may be submitted through March 7, 2025 at [link] by searching for the Docket ID number HHS-OCR-0945-AA22. The most common root cause identified in HIPAA cybersecurity incident investigations is the lack of an accurate and thorough Security Risk Analysis, resulting in breaches and ransomware attacks due to unmanaged risks.

HIPAA 117

HIPAA Compliance Ransomware Governance 117

HIT Consultant

FEBRUARY 12, 2025

– Ransomware Remains a Threat: Ransomware continued to be a major disruptor, accounting for 66.7% Attackers are increasingly leveraging third-party vulnerabilities to amplify the impact of ransomware attacks. of known attack methods.

Ransomware 52

Ransomware HIPAA 52

HIPAA Journal

APRIL 16, 2025

While not specifically mentioned, the language used indicates this was a ransomware attack. Legal counsel for Medical Express confirmed that the data mining process was completed on January 30, 2025, and a mailing vendor was engaged on March 3, 2025. Notification letters were mailed to the affected individuals on April 7, 2025.

Licensing 50

Licensing Health Insurance HIPAA Ransomware 50

HIPAA Journal

MARCH 11, 2025

The data review was completed on February 13, 2025, and confirmed that names, dates of birth, Social Security numbers, medical information, treatment information, healthcare provider information, and health insurance information had been exposed.

Ransomware 58

Ransomware HIPAA Licensing Health Insurance 58

HIPAA Journal

MARCH 20, 2025

Lake Washington Vascular Lake Washington Vascular, a surgical center in Bellevue, Washington, has fallen victim to a ransomware attack. on February 14, 2025. Peters, Missouri, has notified 1,265 individuals about a security incident on January 17, 2025. Topy America Topy America Inc., Charles County Ambulance District St.

Ransomware 70

Ransomware HIPAA Governance Hospitals 70

Becker's Health IT

FEBRUARY 20, 2025

Ransomware deployments were listed as healthcare executives' and cybersecurity professionals' top concern for 2025, according to a Feb. 18 report from Health-ISAC.

Ransomware 63

Ransomware 63

Healthcare IT Today

APRIL 22, 2025

During ransomware attacks, hospitals can be compelled to turn off vital systems, therefore compromising patient care at a critical moment. Deloitte projects that by 2025, 68% of medical devices will be linked to the internet, therefore providing greater probable hacker access. Despite this, the danger of cyberattacks climbs as well.

Compliance Framework 64

Compliance Framework Hospitals Ransomware Compliance 64

Healthcare IT Today

MARCH 30, 2025

Research from Trustwave found 45% of ransomware attacks in healthcare exploited public-facing applications in 2024. An SAS survey found 95% of healthcare organizations are using or plan to adopt generative AI within the next two years. For life science organizations, the figure is 97%.

Ransomware 56

Ransomware Medicare Medicare 56

Healthcare IT News - Telehealth

JUNE 7, 2024

MediSecure voluntarily enters administration E-prescription service MediSecure entered into voluntary administration three weeks after it reported a "large-scale" ransomware attack. Digital devices carrying the ePCR will be introduced gradually in over 500 ambulance fleets from the middle of 2025. million ($15.6

Ransomware 176

Ransomware Governance Hospitals 176

HIT Consultant

NOVEMBER 7, 2024

– The inaugural 2025 Healthcare Compliance Outlook draws on insights from over 120 U.S.-based Cybersecurity Concerns: Cybersecurity threats, including ransomware and data breaches, remain a top concern, with many organizations feeling unprepared to mitigate these risks.

Compliance 52

Compliance Due Diligence Governance Ransomware 52

HIPAA Journal

APRIL 10, 2025

The malware is used to exploit the flaw to elevate privileges to facilitate the widespread deployment of ransomware on victims’ systems. The vulnerability is tracked as CVE-2025-29824 and is a use-after-free vulnerability affecting the CLFS kernel driver. Windows CLFS is a logging system used for managing transactional records.

Ransomware 50

Ransomware HIPAA 50

Compliancy Group

APRIL 9, 2025

Healthcare cybersecurity continues to face serious challenges in 2025. Breach Breakdown: Who Was Hit and How The healthcare industry was hit hard in March 2025, with a whopping 86% of the 44 data breaches affecting healthcare providers. These attacks often involve ransomware, phishing, or exploitation of unpatched systems.

Ransomware 52

Ransomware Compliance 52

Healthcare IT News - Telehealth

JULY 25, 2024

ABDM, tele-mental health budgets reduced Early this week, India's Finance Minister Nirmala Sitharaman announced the official Union Budget for 2024-2025. The move to more secure digital infrastructure came almost a year after the state health insurer was hit by a Medusa ransomware attack, which exposed the data of some 13 million members.

Health Insurance 147

Health Insurance Ransomware Governance 147

HIT Consultant

APRIL 10, 2025

Healthcares vast network of providers, insurers, and third-party vendors makes it a lucrative target for email-based fraud and ransomware infections. As email security threats become more automated and difficult to detect, proactive defense strategies will be the key to protecting healthcare organizations in 2025.

Regulatory Compliance 66

Regulatory Compliance Ransomware Fraud Compliance 66

Healthcare IT Today

FEBRUARY 13, 2025

Start by identifying and quantifying potential incidents, such as data breaches or ransomware attacks. Act Now: The Compliance Timeline The proposed rules were published on January 6, 2025, with a comment period ending March 7, 2025.

Compliance 59

Compliance HIPAA Ransomware Fraud 59

HIPAA Journal

MARCH 19, 2025

The incident sounds like a ransomware attack; however, no ransomware group appears to have claimed responsibility for the attack. The breach was detected on January 15, 2025, and immediate action was taken to prevent further unauthorized access. No other systems were compromised in the incident.

Ransomware 80

Ransomware Licensing Hospitals HIPAA 80

Healthcare IT Today

MARCH 2, 2025

Healthcare saw a 20% increase in ransomware attacks in 2024 , according to a BlackFog report. A survey from AAFP affiliate Phyx Primary Care found almost 48% of primary care physicians using AI assistants use them with every patient they see. million.

Hospitals 49

Hospitals Ransomware FDA Medicaid 49

Compliancy Group

JANUARY 7, 2025

On January 7, 2025, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced that it had entered into an $80,000 settlement and three-year corrective action plan (CAP) with Massachusetts-based HIPAA business associate Elgon Information Systems (Elgon), an EMR and billing support service provider to covered entities.

Ransomware 52

Ransomware HIPAA Governance Compliance 52

Healthcare IT Today

APRIL 21, 2025

That means thousands of devices could be sitting unprotected, waiting for the next ransomware attack to exploit them. Key Takeaways Security controls dont always stay on. Updates break things, users disable protections, and IT teams struggle to keep up with constantly shifting vulnerabilities.

Ransomware 64

Ransomware Nurses Hospitals 64