Krebs on Security

DECEMBER 13, 2021

The attack disrupted services at several Irish hospitals and resulted in the near complete shutdown of the HSE’s national and local networks, forcing the cancellation of many outpatient clinics and healthcare services. To get up to speed, I interviewed over a dozen of the healthcare security industry’s best and brightest minds.

Healthcare 328

Healthcare Ransomware Antivirus Hacking 328

Security Affairs

FEBRUARY 20, 2025

NailaoLocker ransomware is a new threat that targeted European healthcare organizations from June to October 2024. ” Threat actors could exploit the flaw to extract information on gateways, including password hashes for all local accounts. ” reads the report Orange Cyberdefense CERT. ” concludes the report.

Healthcare 85

Healthcare Ransomware VPN Malware 85

Krebs on Security

MARCH 14, 2025

Some of those lures worked, and allowed thieves to gain control over booking.com accounts. Earlier this month, the security firm Arctic Wolf warned about ClickFix attacks targeting people working in the healthcare sector.

Phishing 271

Phishing Malware Scams Passwords 271

Bleeping Computer

APRIL 30, 2024

UnitedHealth confirms that Change Healthcare's network was breached by the BlackCat ransomware gang, who used stolen credentials to log into the company's Citrix remote access service, which did not have multi-factor authentication enabled. [.]

Healthcare 117

Healthcare Accountability Hacking Authentication 117

Security Affairs

JULY 4, 2024

Healthcare firm HealthEquity disclosed a data breach caused by a partner’s compromised account that exposed protected health information. Healthcare fintech firm HealthEquity disclosed a data breach after a partner’s compromised account was used to access its systems. million HSA accounts with $20.5

Data breaches 122

Data breaches Healthcare Accountability Insurance 122

Security Affairs

JANUARY 10, 2024

The Healthcare services provider HMG Healthcare has disclosed a data breach that impacted 40 affiliated nursing facilities. In November 2023, the Healthcare services provider HMG Healthcare discovered a data breach that exposed personal health information related to residents and employees at HMG affiliated nursing facilities.

Data breaches 132

Data breaches Healthcare Hacking Ransomware 132

Security Affairs

DECEMBER 9, 2023

Kentucky health system Norton Healthcare disclosed a data breach after it was a victim of a ransomware attack in May. Norton Healthcare disclosed a data breach after a ransomware attack that hit the organization on May 9, 2023. Norton Healthcare is a healthcare system based in Louisville, Kentucky (US).

Healthcare 136

Healthcare Data breaches Ransomware Insurance 136

Thales Cloud Protection & Licensing

OCTOBER 11, 2024

However, industries reliant on shared devices—such as healthcare, retail, and manufacturing—face unique challenges. For example, in healthcare, constant authentication interruptions can impact both patient care and productivity. These fast-paced environments need a more flexible approach to balance security, speed, and user privacy.

Authentication 132

Authentication Retail Healthcare Manufacturing 132

Security Affairs

OCTOBER 20, 2022

Healthcare system Advocate Aurora Health (AAH) disclosed a data breach that exposed the personal data of 3,000,000 patients. The US-based hospital healthcare system Advocate Aurora Health (AAH) disclosed a data breach that exposed the personal data of 3,000,000 patients. The company is notifying the impacted individuals.

Data breaches 138

Data breaches Healthcare Insurance Accountability 138

eSecurity Planet

MAY 30, 2024

Ransomware attacks and data breaches make headlines when they shut down huge connected healthcare providers such as Ascension Healthcare or Change Healthcare. IT should never be the top expense for a healthcare organization. The costs, affected patients, and consequences continue to be tallied.

Healthcare 124

Healthcare Cybersecurity Ransomware Backups 124

SecureWorld News

SEPTEMBER 27, 2024

healthcare system. The legislation is a direct response to a surge in cyberattacks targeting healthcare providers, breaching patient privacy, and disrupting care delivery across the nation. The legislation could potentially lower costs associated with recovery from breaches and improve public trust in healthcare services.

Healthcare 108

Healthcare Cybersecurity Artificial Intelligence Insurance 108

The Last Watchdog

DECEMBER 16, 2024

Gen AI threats and quantum computing exposures must be accounted for. Meanwhile, ransomware attacks on healthcare providers will persist, targeting outdated systems and jeopardizing patient care, emphasizing the need for stronger defenses to protect critical services. The drivers are intensifying.

Cyber threats 264

Cyber threats CISO IoT Phishing 264

Security Affairs

MAY 19, 2024

WebTPA, a third-party administrator that provides healthcare management and administrative services, disclosed a data breach. WebTPA is a third-party administrator that provides healthcare management and administrative services. The US company disclosed a data breach that impacted almost 2.5 million people.

Data breaches 137

Data breaches Healthcare Insurance Identity Theft 137

SecureWorld News

APRIL 9, 2024

billing and electronic payment system operated by Change Healthcare, a big division of UnitedHealth Group, is only the latest, but maybe greatest, example. RELATED: Hospitals Seek Federal Help as Change Healthcare Ransomware Attack Disrupts Payments ] The attack has left hundreds, if not thousands, of providers all over the U.S.

Healthcare 115

Healthcare Computers and Electronics Insurance Hacking 115

SecureWorld News

JUNE 5, 2024

Department of Health and Human Services (HHS) has stepped in to ensure patients are made aware if their sensitive data was compromised during February's massive cyberattack on health IT firm Change Healthcare. The unprecedented directive stems from Change Healthcare's business acquisition by UnitedHealth in 2022.

Healthcare 113

Healthcare Data breaches Identity Theft Insurance 113

Security Boulevard

JANUARY 16, 2024

The volume of online scams relating to healthcare emanating from inexpensive TLDs is spiking—accounting for as much as 60% of daily domain registrations. The post Netcraft Report Surfaces Spike in Online Healthcare Product Scams appeared first on Security Boulevard.

Healthcare 111

Healthcare Scams Accountability Mobile 111

SecureWorld News

MAY 14, 2024

Artificial intelligence is rapidly reshaping many industries, and healthcare is no exception. Leading healthcare providers and companies are avidly adopting advanced generative AI tools to drive operational efficiencies and improve patient care. Of course, not everyone is enthusiastic about AI's ascendance in healthcare.

Healthcare 115

Healthcare Artificial Intelligence CISO Government 115

Security Affairs

DECEMBER 6, 2024

Healthcare company Atrium Health disclosed a data breach that impacted 585,000 individuals. Impacts vary depending on users’ browsers, cookies, and third-party account activity. The company pointed out that no Social Security numbers, financial accounts, or credit/debit card information were affected. added Atrium Health.

Data breaches 110

Data breaches Identity Theft Accountability Technology 110

Security Affairs

DECEMBER 8, 2024

Anna Jaques Hospital is a not-for-profit community healthcare facility located in Newburyport, Massachusetts. On January 19, the Money Messageransomware gang added the healthcare organization to its Tor leak site claiming the theft of 600GB of sensitive data, including PII and diagnoses.

Data breaches 116

Data breaches Insurance Healthcare Ransomware 116

SecureWorld News

JULY 18, 2024

UnitedHealth Group, the Minnesota-based health insurance giant, recently announced its second quarter results, revealing a stark financial impact from the cyberattack on Change Healthcare. The breach's scale and complexity have made it one of the most significant cyber incidents in the healthcare sector in recent years. billion and $2.45

Healthcare 99

Healthcare Risk Data breaches Insurance 99

Malwarebytes

AUGUST 28, 2024

The Qilin ransomware group listed CODAC Behavioral Healthcare, a nonprofit health care treatment organization, as one of their latest victims. Qilin seems to have a preference for healthcare and support organizations. As ThreatDown reported earlier in 2024, 70% of all known attacks on healthcare happen in the US. Take your time.

Healthcare 104

Healthcare Ransomware Data breaches Passwords 104

CyberSecurity Insiders

OCTOBER 21, 2022

Preliminary analysis made by security experts of AAH revealed hackers accessed the following info, such as IP address, dates and times of scheduled appointments, gist of patient’s medical history, insurance data and proxy account info. million patients. .

Data breaches 137

Data breaches Healthcare Hacking Data privacy 137

Malwarebytes

APRIL 23, 2024

UnitedHealth Group has given an update on the February cyberattack on Change Healthcare , one of its subsidiaries. On Wednesday February 21, 2024, Change Healthcare experienced serious system outages due to the cyberattack. The incident led to widespread billing outages, as well as disruptions at pharmacies across the United States.

Healthcare 136

Healthcare Identity Theft Passwords Data breaches 136

SecureWorld News

FEBRUARY 21, 2024

Senator Ron Wyden, D-Ore, recently proposed the Algorithmic Accountability Act, legislation that would require companies to assess their automated systems for accuracy, bias, and privacy risks. This includes artificial intelligence (AI) and machine learning (ML) systems that are increasingly used in healthcare. for SecureWorld News.

Healthcare 104

Healthcare Artificial Intelligence Government Risk 104

Krebs on Security

OCTOBER 12, 2020

Trickbot has been used to steal passwords from millions of infected computers, and reportedly to hijack access to well more than 250 million email accounts from which new copies of the malware are sent to the victim’s contacts. On Sunday, Sept.

Healthcare 362

Healthcare Ransomware Internet Internet 362

Malwarebytes

FEBRUARY 11, 2025

Once the passwords are sold, the new, malicious owners will attempt to use individual passwords for a variety of common online accountstesting whether, say, an email account password is the same one used for a victims online banking system, their mortgage payment platform, or their Social Security portal.

Phishing 124

Phishing Passwords Mobile Authentication 124

Malwarebytes

JUNE 24, 2024

For the first time since news broke about a ransomware attack on Change Healthcare, the company has released details about the data stolen during the attack. First, a quick refresher: On February 21, 2024, Change Healthcare experienced serious system outages due to a cyberattack. Take your time. Consider not storing your card details.

Healthcare 102

Healthcare Ransomware Passwords Insurance 102

Malwarebytes

MARCH 15, 2024

Following the February 21 attack on Change Healthcare , scores of people in the US have been living with the brutal, real-world effects of ransomware. They are always damaging and they always cause pain, but when they hit the healthcare system, the consequences—particularly the risk to life—are often more immediately obvious and shocking.

Healthcare 113

Healthcare Ransomware Backups Insurance 113

Krebs on Security

DECEMBER 8, 2022

The first centers on targeting healthcare organizations that offer consultations over the Internet and sending them booby-trapped medical records for the “patient.” healthcare organizations. Using hard-to-crack unique passwords to protect sensitive data and accounts, as well as enabling multi-factor authentication.

Healthcare 325

Healthcare Backups Ransomware Insurance 325

Malwarebytes

JANUARY 6, 2025

Westend Dental agreed to settle several violations of the Health Insurance Portability and Accountability Act (HIPAA) in a penalty of $350,000. Medusa Locker is a type of ransomware that operates under a Ransomware-as-a-Service (RaaS) model, primarily targeting large enterprises in sectors such as healthcare and education.

Data breaches 144

Data breaches Ransomware Passwords Insurance 144

Krebs on Security

MAY 14, 2021

The crime gang announced it was closing up shop after its servers were seized and someone drained the cryptocurrency from an account the group uses to pay affiliates. Affiliates also will be required to get approval before infecting victims.

Ransomware 364

Ransomware Cryptocurrency Cybercrime Healthcare 364

Thales Cloud Protection & Licensing

JANUARY 22, 2025

HHS Office for Civil Rights Proposes Measures to Strengthen Cybersecurity in Health Care Under HIPAA madhav Thu, 01/23/2025 - 06:25 Data Breaches in Healthcare: Why Stronger Regulations Matter A data breach involving personal health information isnt just about stolen filesits a gut punch to trust and a serious shake-up to peoples lives.

Healthcare 62

Healthcare Cybersecurity Data breaches Encryption 62

Thales Cloud Protection & Licensing

MARCH 18, 2025

Thales OneWelcome Identity Platform and HIPAA Compliance in 2025 madhav Wed, 03/19/2025 - 05:58 The Health Insurance Portability and Accountability Act (HIPAA) has undergone significant changes in 2025, introducing enhanced requirements to address growing cyber threats and ensure comprehensive data protection.

Healthcare 62

Healthcare Encryption Authentication Penetration Testing 62

Krebs on Security

MARCH 1, 2022

27, a new Twitter account “ Contileaks ” posted links to an archive of chat messages taken from Conti’s private communications infrastructure, dating from January 29, 2021 to the present day. The Contileaks account did not respond to requests for comment. hospitals and healthcare providers.”. On Sunday, Feb.

Ransomware 304

Ransomware Healthcare Cybercrime Government 304

Security Affairs

SEPTEMBER 18, 2023

Software development company Retool was the victim of a smishing attack that resulted in the compromise of 27 accounts of its cloud customers. Software development company Retool revealed that 27 accounts of its cloud customers were compromised as a result of an SMS-based social engineering attack.

Accountability 136

Accountability Social Engineering Authentication VPN 136

SecureWorld News

DECEMBER 3, 2024

infrastructure, including healthcare facilities and law enforcement agencies, using ransomware variants like Babuk, Hive, and LockBit​. indictments and sanctions, Matveev has operated openly in Russia, even mocking attempts to hold him accountable. Multiple attacks on critical U.S. Matveev has been a target of U.S. Despite U.S.

Cybercrime 103

Cybercrime Ransomware Healthcare Cryptocurrency 103

Malwarebytes

FEBRUARY 28, 2024

In an updated #StopRansomware security advisory , the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Health and Human Services (HHS) has warned the healthcare industry about the danger of the ALPHV ransomware group, also known as Blackcat.

Healthcare 98

Healthcare Ransomware Backups Social Engineering 98