Becker's Health IT

MARCH 27, 2024

A ransomware group that specializes in "double extortion" has claimed responsibility for a cyberattack on an Oklahoma hospital, HIPAA Journal reported.

Ransomware 127

Ransomware Hospitals HIPAA 127

HIPAA Journal

JANUARY 11, 2023

Healthcare ransomware attacks have at least doubled in the past 5 years, data recovery from backups has decreased, and it is now common for data to be stolen and publicly released following a successful attack, according to a new analysis recently published in the JAMA Health Forum. Out of the 374 confirmed ransomware attacks, only 20.6%

Ransomware 132

Ransomware HIPAA Hospitals 132

HIPAA Journal

APRIL 21, 2022

The Federal Bureau of Investigation (FBI) has issued a TLP: WHITE flash alert about the BlackCat ransomware-a-s-a-service (RaaS) operation. Unusually for ransomware, it is written in RUST, which is considered to be a more secure programming language that ensures better performance and concurrent processing.

Ransomware 143

Ransomware HIPAA 143

HIPAA Journal

NOVEMBER 23, 2022

The healthcare and public health sector (HPH) has been warned about the threat of ransomware attacks by the Lorenz threat group, which has conducted several attacks in the United States over the past two years, with no sign that attacks are slowing. In contrast to most other ransomware gangs, relatively little is known about this group.

Ransomware 141

Ransomware Public Health HIPAA 141

Healthcare It News

MAY 13, 2024

The Health Information Sharing and Analysis Center issued a threat alert Friday about the Russia-backed ransomware group Black Basta, warning of its accelerated attempted attacks against the healthcare sector. "It is recommended that this alert be reviewed with high urgency and the recommended technical mitigations be put in place.

Hospitals 352

Hospitals Ransomware Governance HIPAA 352

HIPAA Journal

DECEMBER 9, 2022

The Health Sector Cybersecurity Coordination Center (HC3) has issued a warning to the healthcare and public health (HPH) sector about Royal ransomware attacks. Royal ransomware is a new ransomware threat that was first observed being used in attacks in September 2022. Both will prevent files from being opened.

Ransomware 132

Ransomware Public Health HIPAA 132

HIPAA Journal

NOVEMBER 23, 2022

Databreaches.net investigated and identified an entry on the data leak site of a relatively unknown ransomware group called Project Relic, which has claimed responsibility for the attack. According to Blackpoint, the ransomware is written in Go due to its portability, speed, and the minimal chance of it being detected by static analysis.

Ransomware 140

Ransomware Hospitals Doctors HIPAA 140

HIPAA Journal

APRIL 20, 2022

The HHS’ Office of Information Security Health Sector Cybersecurity Coordination Center (HC3) has issued a TLP: White alert about the Hive ransomware group – A particularly aggressive cybercriminal operation that has extensively targeted the healthcare sector in the United States.

Ransomware 138

Ransomware HIPAA 138

HIPAA Journal

DECEMBER 13, 2022

The Health Sector Cybersecurity Coordination Center (HC3) has released analyses of two ransomware variants that are being used in attacks on the healthcare sector: LockBit 3.0 LockBit ransomware was first detected in September 2019 when it was known as ABCD ransomware. and has code similar to DarkSide and BlackMatter ransomware.

Ransomware 138

Ransomware HIPAA 138

HIPAA Journal

DECEMBER 5, 2022

The Cuba ransomware group has increased attacks in the United States, with attacks doubling since December 2021, and ransom payments are also on the rise. According to CISA and the FBI, there are similarities between the infrastructure used by the Cuba ransomware operation and the RomCom RAT and Industrial Spy ransomware actors.

Ransomware 130

Ransomware Public Health HIPAA Governance 130

HIPAA Journal

MARCH 1, 2022

Ransomware attacks have recently been reported by four healthcare providers across the country, which have collectively resulted in the exposure and potential theft of the protected health information of more than 49,000 individuals. The post Four Healthcare Providers Hit with Ransomware Attacks appeared first on HIPAA Journal.

Ransomware 145

Ransomware Licensing HIPAA Health Insurance 145

Becker's Health IT

DECEMBER 30, 2024

Learn about the proposed changes to HIPAA that aim to strengthen cybersecurity in healthcare and protect against data breaches and ransomware attacks.

HIPAA 118

HIPAA Ransomware 118

Compliancy Group

DECEMBER 9, 2024

Jefferson Dental Cente r, a South Bend, Indiana dental practice operated by Dr. Lorraine Celis, experienced a ransomware attack on November 15, 2024. Details of the ransomware attack that exposed PHI, and that may have resulted in unauthorized parties obtaining protected health information, are provided below.

Ransomware 98

Ransomware Licensing HIPAA Compliance 98

HIPAA Journal

FEBRUARY 18, 2022

CrowdStrike has released its annual threat report which shows there was a major increase in data leaks following ransomware attacks in 2021, rising 82% from 2020. CrowdStrike observed 2,686 ransomware attacks in 2021 compared to 1,474 in 2020. There were more than 50 ransomware attacks a week in 2021.

Ransomware 145

Ransomware HIPAA 145

HIPAA Journal

JUNE 13, 2022

Yuma Regional Medical Center (YRMC) in Arizona has announced it was the victim of a ransomware attack in April in which the attackers obtained the protected health information of approximately 700,000 current and former patients. Ransomware attacks often result in the exposure of stolen data if the ransom is not paid.

Ransomware 135

Ransomware Electronic Medical Records HIPAA Health Insurance 135

HIPAA Journal

MAY 25, 2022

Bryan County Ambulance Authority Ransomware Attack Affects 14,000 Patients. Lifespan Services Suffers Ransomware Attack. Charlotte, NC-based Lifespan Services, a non-profit provider of services to individuals with disabilities, has recently confirmed it was the victim of a ransomware attack that affected data on its servers.

Ransomware 137

Ransomware Fraud HIPAA Licensing 137

HIPAA Journal

JULY 4, 2022

According to the company’s substitute breach notice, a sophisticated ransomware attack was detected and blocked on February 26, 2022; however, not in time to prevent some of its computer systems from being disabled. Third-party forensics specialists were engaged to investigate the breach and provide assistance with securing its environment.

Ransomware 138

Ransomware HIPAA Health Insurance Governance 138

HIPAA Journal

JULY 6, 2022

The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), Department of the Treasury, and the Financial Crimes Enforcement Network (FinCEN) have issued a joint cybersecurity advisory about MedusaLocker ransomware.

Ransomware 130

Ransomware HIPAA 130

HIPAA Journal

MARCH 24, 2023

Ransomware activity increased in February according to the latest GRIT Ransomware Report from GuidePoint Security. ransomware group was particularly active in February, posting more than twice the number of victims (129) on its leak site as January (50), accounting for virtually all of the monthly increase in attacks.

Ransomware 131

Ransomware Public Health HIPAA 131

HIPAA Journal

JANUARY 3, 2023

Ransomware attacks continue to be conducted on healthcare organizations in high numbers but determining the extent to which healthcare organizations are being targeted by ransomware gangs is a challenge. The decision whether or not to encrypt appears to be taken on an attack-by-attack basis.

Ransomware 126

Ransomware Hospitals HIPAA Governance 126

HIPAA Journal

MARCH 10, 2023

Codman Square Health Center in Boston, MA, has confirmed that it was the victim of a ransomware attack in November 2022 in which hackers gained access to the protected health information of 10,161 current and former patients. The post Ransomware Attack Announced by Codman Square Health Center appeared first on HIPAA Journal.

Ransomware 131

Ransomware HIPAA 131

HIPAA Journal

MARCH 30, 2022

have confirmed they were recent victims of cyberattacks, both of which involved the use of ransomware. Ransomware Attack Affects 85,282 Law Enforcement Health Benefits Members. LEHB) has recently announced that it was the victim of a ransomware attack that was detected on September 14, 2021. Law Enforcement Health Benefits, Inc.

Ransomware 142

Ransomware Electronic Medical Records HIPAA Licensing 142

HIPAA Journal

JULY 29, 2022

million global sensors in 215 countries and shows a global fall in ransomware attacks, with notable increases in malware attacks for the first time in 3 years. Ransomware. SonicWall reports a 23% fall in ransomware attacks globally in H1 2022, which fell to 236.1 The data for the report was collected from more than 1.1

Ransomware 145

Ransomware Governance HIPAA 145

HIPAA Journal

AUGUST 15, 2022

Multiple ransomware groups have adopted the BazarCall callback phishing technique to gain initial access to victims’ networks, including threat actors that have targeted the healthcare sector. BazarCall was first utilized by the Ryuk ransomware operation in 2020/2021.

Ransomware 145

Ransomware HIPAA 145

HIPAA Journal

AUGUST 11, 2022

Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have issued a joint security alert about the Zeppelin ransomware-as-a-service (RaaS) operation, which has extensively targeted organizations in the healthcare and medical industries.

Ransomware 142

Ransomware HIPAA 142

HIPAA Journal

JULY 7, 2022

A joint security alert has been issued to the healthcare and public health sector by the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and the Department of the Treasury warning about the threat of Maui ransomware attacks.

Ransomware 145

Ransomware Public Health Electronic Medical Records HIPAA 145

HIPAA Journal

AUGUST 3, 2022

The health insurer Aetna ACE is one of the latest healthcare organizations to announce it has been affected by a ransomware attack on a mailing vendor, which involved the protected health information of 326,278 plan members. The ransomware attack affected OneTouchPoint, which provides printing and mailing services for U.S.

Ransomware 143

Ransomware HIPAA Health Insurance 143

HIPAA Journal

AUGUST 29, 2022

According to EmergeOrtho’s substitute breach notice, a sophisticated ransomware attack was detected and blocked on May 18, 2022. General Health System Notifies Patients About Ransomware Attack and Data Theft. The post EmergeOrtho & General Health System Victims of Ransomware Attacks appeared first on HIPAA Journal.

Ransomware 130

Ransomware HIPAA 130

HIPAA Journal

DECEMBER 13, 2022

Ransomware remains one of the most serious threats to the healthcare industry. The ransomware gang assumes that prior to the appointment, the doctor will open the file to check the patient’s records, and will install malware that will provide access to their device. Telemedicine Providers Targeted.

Ransomware 144

Ransomware Telemedicine Doctors HIPAA 144

Healthcare IT Today

JANUARY 7, 2025

Proposed Changes Require Strong Cybersecurity The newly proposed changes to the 2013 HIPAA Security Rule published yesterday in the U.S. Following federal rulemaking procedures, the proposed HIPAA Security Rule from the U.S.

HIPAA 122

HIPAA Compliance Ransomware Governance 122

HIPAA Journal

MAY 2, 2024

Ransomware groups target the healthcare sector because a successful attack gives them access to large amounts of sensitive data that can be easily monetized and used as leverage to get a ransom paid. According to Recorded Future, there were 358 ransomware attacks on healthcare organizations in 2023, a year-on-year increase of 46%.

Ransomware 114

Ransomware HIPAA Governance 114

HIPAA Journal

MARCH 18, 2022

A large percentage of those breaches could have been prevented if HIPAA-regulated entities were fully compliant with the HIPAA Security Rule. Coveware’s Q2, 2021 Quarterly Ransomware Report suggests 42% of ransomware attacks in the quarter saw initial network access gained via phishing emails. Prevention of Phishing.

HIPAA 142

HIPAA Compliance Ransomware Healthcare information Technology 142

HIPAA Journal

MAY 25, 2023

CommonSpirit Health has provided an updated estimate on the cost of its October 2022 ransomware attack, which is expected to increase to $160 million. The ransomware attack was detected by CommonSpirit Health on October 2, 2022, forcing systems to be taken offline. The lawsuit was filed in December 2022 in the U.S.

Ransomware 126

Ransomware HIPAA Hospitals 126

HIPAA Journal

AUGUST 17, 2022

According to the breach notification sent to the California Attorney General, Practice Resources was the victim of a ransomware attack on April 12, 2022. The post Ransomware Attack on New York Billing Company Affects 942K Individuals appeared first on HIPAA Journal.

Ransomware 143

Ransomware HIPAA Hospitals Health Insurance 143

HIPAA Journal

DECEMBER 30, 2022

A settlement has been proposed by Scripps Health to resolve a consolidated class action lawsuit – In Re: Scripps Health Data Incident Litigation – to resolve all claims related to its 2021 ransomware attack. The ransomware attack has proven to be incredibly costly for Scripps Health. The post Scripps Health Proposes $3.5M

Ransomware 127

Ransomware HIPAA Licensing Doctors 127

HIPAA Journal

FEBRUARY 27, 2023

The healthcare and public health (HPH) sector has been warned about cyberattacks involving MedusaLocker ransomware – one of the lesser-known ransomware variants used in cyberattacks on the sector. The ransomware variant was first detected in September 2019 and the group is thought to primarily target the HPH sector.

Ransomware 117

Ransomware Public Health HIPAA 117

HIPAA Journal

NOVEMBER 10, 2022

The Health Sector Cybersecurity Coordination Center (HC3) has recently shared details of the tactics, techniques, and procedures associated with Venus ransomware attacks, and has made several recommendations on mitigations that healthcare organizations can implement to improve their defenses against attacks.

Ransomware 117

Ransomware HIPAA 117