HIPAA Journal

NOVEMBER 23, 2022

The healthcare and public health sector (HPH) has been warned about the threat of ransomware attacks by the Lorenz threat group, which has conducted several attacks in the United States over the past two years, with no sign that attacks are slowing. In contrast to most other ransomware gangs, relatively little is known about this group.

Ransomware 137

Ransomware Public Health HIPAA 137

HIPAA Journal

JUNE 29, 2022

On June 25, 2022, a spokesperson for a threat group called DAIXIN Team contacted HIPAA Journal to share information about a ransomware attack and data theft incident at Fitzgibbon Hospital in Marshall, Missouri. DAIXIN Team was previously not known to HIPAA Journal and appears to be a new ransomware group.

Ransomware 125

Ransomware Hospitals HIPAA Health Insurance 125

HIPAA Journal

APRIL 21, 2022

The Federal Bureau of Investigation (FBI) has issued a TLP: WHITE flash alert about the BlackCat ransomware-a-s-a-service (RaaS) operation. Unusually for ransomware, it is written in RUST, which is considered to be a more secure programming language that ensures better performance and concurrent processing.

Ransomware 135

Ransomware HIPAA 135

Healthcare It News

MAY 13, 2024

The Health Information Sharing and Analysis Center issued a threat alert Friday about the Russia-backed ransomware group Black Basta, warning of its accelerated attempted attacks against the healthcare sector. "It is recommended that this alert be reviewed with high urgency and the recommended technical mitigations be put in place.

Hospitals 341

Hospitals Ransomware Governance HIPAA 341

HIPAA Journal

NOVEMBER 23, 2022

Databreaches.net investigated and identified an entry on the data leak site of a relatively unknown ransomware group called Project Relic, which has claimed responsibility for the attack. According to Blackpoint, the ransomware is written in Go due to its portability, speed, and the minimal chance of it being detected by static analysis.

Ransomware 135

Ransomware Hospitals Doctors HIPAA 135

HIPAA Journal

DECEMBER 13, 2022

The Health Sector Cybersecurity Coordination Center (HC3) has released analyses of two ransomware variants that are being used in attacks on the healthcare sector: LockBit 3.0 LockBit ransomware was first detected in September 2019 when it was known as ABCD ransomware. and has code similar to DarkSide and BlackMatter ransomware.

Ransomware 134

Ransomware HIPAA 134

HIPAA Journal

MARCH 24, 2023

Ransomware activity increased in February according to the latest GRIT Ransomware Report from GuidePoint Security. ransomware group was particularly active in February, posting more than twice the number of victims (129) on its leak site as January (50), accounting for virtually all of the monthly increase in attacks.

Ransomware 131

Ransomware Public Health HIPAA 131

HIPAA Journal

MARCH 1, 2022

Ransomware attacks have recently been reported by four healthcare providers across the country, which have collectively resulted in the exposure and potential theft of the protected health information of more than 49,000 individuals. The post Four Healthcare Providers Hit with Ransomware Attacks appeared first on HIPAA Journal.

Ransomware 142

Ransomware Licensing HIPAA Health Insurance 142

HIPAA Journal

DECEMBER 5, 2022

The Cuba ransomware group has increased attacks in the United States, with attacks doubling since December 2021, and ransom payments are also on the rise. According to CISA and the FBI, there are similarities between the infrastructure used by the Cuba ransomware operation and the RomCom RAT and Industrial Spy ransomware actors.

Ransomware 126

Ransomware Public Health HIPAA Governance 126

HIPAA Journal

APRIL 20, 2022

The HHS’ Office of Information Security Health Sector Cybersecurity Coordination Center (HC3) has issued a TLP: White alert about the Hive ransomware group – A particularly aggressive cybercriminal operation that has extensively targeted the healthcare sector in the United States.

Ransomware 132

Ransomware HIPAA 132

HIPAA Journal

JULY 4, 2022

According to the company’s substitute breach notice, a sophisticated ransomware attack was detected and blocked on February 26, 2022; however, not in time to prevent some of its computer systems from being disabled. Third-party forensics specialists were engaged to investigate the breach and provide assistance with securing its environment.

Ransomware 136

Ransomware HIPAA Health Insurance Governance 136

HIPAA Journal

JUNE 13, 2022

Yuma Regional Medical Center (YRMC) in Arizona has announced it was the victim of a ransomware attack in April in which the attackers obtained the protected health information of approximately 700,000 current and former patients. Ransomware attacks often result in the exposure of stolen data if the ransom is not paid.

Ransomware 132

Ransomware Electronic Medical Records HIPAA Health Insurance 132

HIPAA Journal

JULY 29, 2022

million global sensors in 215 countries and shows a global fall in ransomware attacks, with notable increases in malware attacks for the first time in 3 years. Ransomware. SonicWall reports a 23% fall in ransomware attacks globally in H1 2022, which fell to 236.1 The data for the report was collected from more than 1.1

Ransomware 144

Ransomware Governance HIPAA 144

HIPAA Journal

JULY 6, 2022

The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), Department of the Treasury, and the Financial Crimes Enforcement Network (FinCEN) have issued a joint cybersecurity advisory about MedusaLocker ransomware.

Ransomware 127

Ransomware HIPAA 127

HIPAA Journal

MAY 25, 2022

Bryan County Ambulance Authority Ransomware Attack Affects 14,000 Patients. Lifespan Services Suffers Ransomware Attack. Charlotte, NC-based Lifespan Services, a non-profit provider of services to individuals with disabilities, has recently confirmed it was the victim of a ransomware attack that affected data on its servers.

Ransomware 133

Ransomware Fraud HIPAA Licensing 133

HIPAA Journal

FEBRUARY 18, 2022

CrowdStrike has released its annual threat report which shows there was a major increase in data leaks following ransomware attacks in 2021, rising 82% from 2020. CrowdStrike observed 2,686 ransomware attacks in 2021 compared to 1,474 in 2020. There were more than 50 ransomware attacks a week in 2021.

Ransomware 138

Ransomware HIPAA 138

HIPAA Journal

DECEMBER 9, 2022

The Health Sector Cybersecurity Coordination Center (HC3) has issued a warning to the healthcare and public health (HPH) sector about Royal ransomware attacks. Royal ransomware is a new ransomware threat that was first observed being used in attacks in September 2022. Both will prevent files from being opened.

Ransomware 121

Ransomware Public Health HIPAA 121

HIPAA Journal

JULY 7, 2022

A joint security alert has been issued to the healthcare and public health sector by the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and the Department of the Treasury warning about the threat of Maui ransomware attacks.

Ransomware 141

Ransomware Public Health Electronic Medical Records HIPAA 141

HIPAA Journal

JANUARY 3, 2023

Ransomware attacks continue to be conducted on healthcare organizations in high numbers but determining the extent to which healthcare organizations are being targeted by ransomware gangs is a challenge. The decision whether or not to encrypt appears to be taken on an attack-by-attack basis.

Ransomware 120

Ransomware Hospitals HIPAA Governance 120

HIPAA Journal

AUGUST 29, 2022

According to EmergeOrtho’s substitute breach notice, a sophisticated ransomware attack was detected and blocked on May 18, 2022. General Health System Notifies Patients About Ransomware Attack and Data Theft. The post EmergeOrtho & General Health System Victims of Ransomware Attacks appeared first on HIPAA Journal.

Ransomware 125

Ransomware HIPAA 125

HIPAA Journal

MARCH 30, 2022

have confirmed they were recent victims of cyberattacks, both of which involved the use of ransomware. Ransomware Attack Affects 85,282 Law Enforcement Health Benefits Members. LEHB) has recently announced that it was the victim of a ransomware attack that was detected on September 14, 2021. Law Enforcement Health Benefits, Inc.

Ransomware 135

Ransomware Electronic Medical Records HIPAA Licensing 135

HIPAA Journal

MARCH 18, 2022

A large percentage of those breaches could have been prevented if HIPAA-regulated entities were fully compliant with the HIPAA Security Rule. Coveware’s Q2, 2021 Quarterly Ransomware Report suggests 42% of ransomware attacks in the quarter saw initial network access gained via phishing emails. Prevention of Phishing.

HIPAA 141

HIPAA Compliance Ransomware Healthcare information Technology 141

HIPAA Journal

MARCH 24, 2022

The Federal Bureau of Investigation (FBI) Internet Crime Complaint Center (IC3) has released its 2021 Internet Crime Report , which reveals there were at least 649 ransomware attacks on critical infrastructure organizations from June 2021 to December 2021. Losses to ransomware are difficult to determine.

Ransomware 130

Ransomware Public Health Fraud HIPAA 130

HIPAA Journal

MARCH 10, 2023

Codman Square Health Center in Boston, MA, has confirmed that it was the victim of a ransomware attack in November 2022 in which hackers gained access to the protected health information of 10,161 current and former patients. The post Ransomware Attack Announced by Codman Square Health Center appeared first on HIPAA Journal.

Ransomware 120

Ransomware HIPAA 120

HIPAA Journal

AUGUST 15, 2022

Multiple ransomware groups have adopted the BazarCall callback phishing technique to gain initial access to victims’ networks, including threat actors that have targeted the healthcare sector. BazarCall was first utilized by the Ryuk ransomware operation in 2020/2021.

Ransomware 134

Ransomware HIPAA 134

HIPAA Journal

NOVEMBER 10, 2022

The Health Sector Cybersecurity Coordination Center (HC3) has recently shared details of the tactics, techniques, and procedures associated with Venus ransomware attacks, and has made several recommendations on mitigations that healthcare organizations can implement to improve their defenses against attacks.

Ransomware 117

Ransomware HIPAA 117

HIPAA Journal

AUGUST 3, 2022

The health insurer Aetna ACE is one of the latest healthcare organizations to announce it has been affected by a ransomware attack on a mailing vendor, which involved the protected health information of 326,278 plan members. The ransomware attack affected OneTouchPoint, which provides printing and mailing services for U.S.

Ransomware 134

Ransomware HIPAA Health Insurance 134

HIPAA Journal

MAY 25, 2023

CommonSpirit Health has provided an updated estimate on the cost of its October 2022 ransomware attack, which is expected to increase to $160 million. The ransomware attack was detected by CommonSpirit Health on October 2, 2022, forcing systems to be taken offline. The lawsuit was filed in December 2022 in the U.S.

Ransomware 123

Ransomware HIPAA Hospitals 123

HIPAA Journal

APRIL 22, 2024

At this stage, Octapharma has yet to provide any further details about the attack, such as whether ransomware was used to encrypt files, and said further information will be released as the investigation progresses. BlackSuit is a relatively new ransomware operation that was discovered in May 2023.

Ransomware 114

Ransomware Public Health HIPAA Governance 114

HIPAA Journal

AUGUST 11, 2022

Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have issued a joint security alert about the Zeppelin ransomware-as-a-service (RaaS) operation, which has extensively targeted organizations in the healthcare and medical industries.

Ransomware 131

Ransomware HIPAA 131

Healthcare IT Today

DECEMBER 22, 2023

Department of Health and Human Services (HHS) said it will update the HIPAA Security Rule in 2024 and will ask Congress for new laws and resources to increase civil money penalties for HIPAA violations, increase HIPAA enforcement, and conduct proactive audits.

HIPAA 130

HIPAA Ransomware Compliance Hospitals 130

HIPAA Journal

FEBRUARY 27, 2023

The healthcare and public health (HPH) sector has been warned about cyberattacks involving MedusaLocker ransomware – one of the lesser-known ransomware variants used in cyberattacks on the sector. The ransomware variant was first detected in September 2019 and the group is thought to primarily target the HPH sector.

Ransomware 113

Ransomware Public Health HIPAA 113

HIPAA Journal

JANUARY 26, 2023

Emotet commonly drops the IcedID banking Trojan, which in turn often delivers ransomware payloads. The QakBot operators provide initial access to networks for several ransomware operations. Throughout 2022, LockBit was the most commonly used ransomware variant and remained so throughout the 90-day analysis period.

Ransomware 125

Ransomware HIPAA 125

HIPAA Journal

OCTOBER 12, 2022

Ransomware attacks continue to plague the healthcare industry. Recently, cybersecurity firm Trend Micro conducted a study to investigate the impact ransomware attacks are having on healthcare organizations. Trend Micro reports that 25% of all data breaches now involve ransomware.

Ransomware 129

Ransomware HIPAA Compliance 129

HIPAA Journal

DECEMBER 13, 2022

Ransomware remains one of the most serious threats to the healthcare industry. The ransomware gang assumes that prior to the appointment, the doctor will open the file to check the patient’s records, and will install malware that will provide access to their device. Telemedicine Providers Targeted.

Ransomware 130

Ransomware Telemedicine Doctors HIPAA 130

HIPAA Journal

AUGUST 17, 2022

According to the breach notification sent to the California Attorney General, Practice Resources was the victim of a ransomware attack on April 12, 2022. The post Ransomware Attack on New York Billing Company Affects 942K Individuals appeared first on HIPAA Journal.

Ransomware 132

Ransomware HIPAA Hospitals Health Insurance 132

HIPAA Journal

MAY 1, 2023

The Health Sector Cybersecurity and Coordination Center (HC3) has issued a fresh ransomware warning to the healthcare and public health (HPH) sector following a spate of attacks on the HPH sector in April by the Clop and LockBit ransomware groups. LockBit ransomware was deployed in some of the attacks.

Ransomware 115

Ransomware Public Health HIPAA 115