Security Affairs

FEBRUARY 20, 2025

NailaoLocker ransomware is a new threat that targeted European healthcare organizations from June to October 2024. ” Threat actors could exploit the flaw to extract information on gateways, including password hashes for all local accounts. ” reads the report Orange Cyberdefense CERT. ” concludes the report.

Healthcare 85

Healthcare Ransomware VPN Malware 85

Krebs on Security

MARCH 14, 2025

Some of those lures worked, and allowed thieves to gain control over booking.com accounts. Earlier this month, the security firm Arctic Wolf warned about ClickFix attacks targeting people working in the healthcare sector.

Phishing 271

Phishing Malware Scams Passwords 271

Security Affairs

JULY 4, 2024

Healthcare firm HealthEquity disclosed a data breach caused by a partner’s compromised account that exposed protected health information. Healthcare fintech firm HealthEquity disclosed a data breach after a partner’s compromised account was used to access its systems. million HSA accounts with $20.5

Data breaches 122

Data breaches Healthcare Accountability Insurance 122

Security Affairs

JANUARY 10, 2024

The Healthcare services provider HMG Healthcare has disclosed a data breach that impacted 40 affiliated nursing facilities. In November 2023, the Healthcare services provider HMG Healthcare discovered a data breach that exposed personal health information related to residents and employees at HMG affiliated nursing facilities.

Data breaches 132

Data breaches Healthcare Hacking Ransomware 132

Bleeping Computer

APRIL 30, 2024

UnitedHealth confirms that Change Healthcare's network was breached by the BlackCat ransomware gang, who used stolen credentials to log into the company's Citrix remote access service, which did not have multi-factor authentication enabled. [.]

Healthcare 117

Healthcare Accountability Hacking Authentication 117

Thales Cloud Protection & Licensing

OCTOBER 11, 2024

However, industries reliant on shared devices—such as healthcare, retail, and manufacturing—face unique challenges. For example, in healthcare, constant authentication interruptions can impact both patient care and productivity. These fast-paced environments need a more flexible approach to balance security, speed, and user privacy.

Authentication 132

Authentication Retail Healthcare Manufacturing 132

Security Affairs

DECEMBER 9, 2023

Kentucky health system Norton Healthcare disclosed a data breach after it was a victim of a ransomware attack in May. Norton Healthcare disclosed a data breach after a ransomware attack that hit the organization on May 9, 2023. Norton Healthcare is a healthcare system based in Louisville, Kentucky (US).

Healthcare 136

Healthcare Data breaches Ransomware Insurance 136

Security Affairs

OCTOBER 20, 2022

Healthcare system Advocate Aurora Health (AAH) disclosed a data breach that exposed the personal data of 3,000,000 patients. The US-based hospital healthcare system Advocate Aurora Health (AAH) disclosed a data breach that exposed the personal data of 3,000,000 patients. The company is notifying the impacted individuals.

Data breaches 138

Data breaches Healthcare Insurance Accountability 138

eSecurity Planet

MAY 30, 2024

Ransomware attacks and data breaches make headlines when they shut down huge connected healthcare providers such as Ascension Healthcare or Change Healthcare. IT should never be the top expense for a healthcare organization. The costs, affected patients, and consequences continue to be tallied.

Healthcare 124

Healthcare Cybersecurity Ransomware Backups 124

SecureWorld News

SEPTEMBER 27, 2024

healthcare system. The legislation is a direct response to a surge in cyberattacks targeting healthcare providers, breaching patient privacy, and disrupting care delivery across the nation. The legislation could potentially lower costs associated with recovery from breaches and improve public trust in healthcare services.

Healthcare 109

Healthcare Cybersecurity Artificial Intelligence Insurance 109

The Last Watchdog

DECEMBER 16, 2024

Gen AI threats and quantum computing exposures must be accounted for. Meanwhile, ransomware attacks on healthcare providers will persist, targeting outdated systems and jeopardizing patient care, emphasizing the need for stronger defenses to protect critical services. The drivers are intensifying.

Cyber threats 264

Cyber threats CISO IoT Phishing 264

SecureWorld News

JUNE 5, 2024

Department of Health and Human Services (HHS) has stepped in to ensure patients are made aware if their sensitive data was compromised during February's massive cyberattack on health IT firm Change Healthcare. The unprecedented directive stems from Change Healthcare's business acquisition by UnitedHealth in 2022.

Healthcare 115

Healthcare Data breaches Identity Theft Insurance 115

Security Boulevard

JANUARY 16, 2024

The volume of online scams relating to healthcare emanating from inexpensive TLDs is spiking—accounting for as much as 60% of daily domain registrations. The post Netcraft Report Surfaces Spike in Online Healthcare Product Scams appeared first on Security Boulevard.

Healthcare 111

Healthcare Scams Accountability Mobile 111

Malwarebytes

AUGUST 28, 2024

The Qilin ransomware group listed CODAC Behavioral Healthcare, a nonprofit health care treatment organization, as one of their latest victims. Qilin seems to have a preference for healthcare and support organizations. As ThreatDown reported earlier in 2024, 70% of all known attacks on healthcare happen in the US. Take your time.

Healthcare 113

Healthcare Ransomware Data breaches Passwords 113

Security Affairs

DECEMBER 6, 2024

Healthcare company Atrium Health disclosed a data breach that impacted 585,000 individuals. Impacts vary depending on users’ browsers, cookies, and third-party account activity. The company pointed out that no Social Security numbers, financial accounts, or credit/debit card information were affected. added Atrium Health.

Data breaches 110

Data breaches Identity Theft Accountability Technology 110

Security Affairs

DECEMBER 8, 2024

Anna Jaques Hospital is a not-for-profit community healthcare facility located in Newburyport, Massachusetts. On January 19, the Money Messageransomware gang added the healthcare organization to its Tor leak site claiming the theft of 600GB of sensitive data, including PII and diagnoses.

Data breaches 116

Data breaches Insurance Healthcare Ransomware 116

SecureWorld News

JULY 18, 2024

UnitedHealth Group, the Minnesota-based health insurance giant, recently announced its second quarter results, revealing a stark financial impact from the cyberattack on Change Healthcare. The breach's scale and complexity have made it one of the most significant cyber incidents in the healthcare sector in recent years. billion and $2.45

Healthcare 102

Healthcare Risk Data breaches Insurance 102

Malwarebytes

JUNE 24, 2024

For the first time since news broke about a ransomware attack on Change Healthcare, the company has released details about the data stolen during the attack. First, a quick refresher: On February 21, 2024, Change Healthcare experienced serious system outages due to a cyberattack. Take your time. Consider not storing your card details.

Healthcare 115

Healthcare Ransomware Passwords Insurance 115

CyberSecurity Insiders

OCTOBER 21, 2022

Preliminary analysis made by security experts of AAH revealed hackers accessed the following info, such as IP address, dates and times of scheduled appointments, gist of patient’s medical history, insurance data and proxy account info. million patients. .

Data breaches 137

Data breaches Healthcare Hacking Data privacy 137

Malwarebytes

FEBRUARY 11, 2025

Once the passwords are sold, the new, malicious owners will attempt to use individual passwords for a variety of common online accountstesting whether, say, an email account password is the same one used for a victims online banking system, their mortgage payment platform, or their Social Security portal.

Phishing 133

Phishing Passwords Mobile Authentication 133

SecureWorld News

FEBRUARY 21, 2024

Senator Ron Wyden, D-Ore, recently proposed the Algorithmic Accountability Act, legislation that would require companies to assess their automated systems for accuracy, bias, and privacy risks. This includes artificial intelligence (AI) and machine learning (ML) systems that are increasingly used in healthcare. for SecureWorld News.

Healthcare 106

Healthcare Artificial Intelligence Government Risk 106

Malwarebytes

MARCH 15, 2024

Following the February 21 attack on Change Healthcare , scores of people in the US have been living with the brutal, real-world effects of ransomware. They are always damaging and they always cause pain, but when they hit the healthcare system, the consequences—particularly the risk to life—are often more immediately obvious and shocking.

Healthcare 119

Healthcare Ransomware Backups Insurance 119

Krebs on Security

OCTOBER 12, 2020

Trickbot has been used to steal passwords from millions of infected computers, and reportedly to hijack access to well more than 250 million email accounts from which new copies of the malware are sent to the victim’s contacts. On Sunday, Sept.

Healthcare 361

Healthcare Ransomware Internet Internet 361

Malwarebytes

FEBRUARY 28, 2024

In an updated #StopRansomware security advisory , the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Health and Human Services (HHS) has warned the healthcare industry about the danger of the ALPHV ransomware group, also known as Blackcat.

Healthcare 113

Healthcare Ransomware Backups Social Engineering 113

Malwarebytes

APRIL 23, 2024

UnitedHealth Group has given an update on the February cyberattack on Change Healthcare , one of its subsidiaries. On Wednesday February 21, 2024, Change Healthcare experienced serious system outages due to the cyberattack. The incident led to widespread billing outages, as well as disruptions at pharmacies across the United States.

Healthcare 138

Healthcare Identity Theft Passwords Data breaches 138

Krebs on Security

DECEMBER 8, 2022

The first centers on targeting healthcare organizations that offer consultations over the Internet and sending them booby-trapped medical records for the “patient.” healthcare organizations. Using hard-to-crack unique passwords to protect sensitive data and accounts, as well as enabling multi-factor authentication.

Healthcare 323

Healthcare Backups Ransomware Insurance 323

Malwarebytes

JANUARY 6, 2025

Westend Dental agreed to settle several violations of the Health Insurance Portability and Accountability Act (HIPAA) in a penalty of $350,000. Medusa Locker is a type of ransomware that operates under a Ransomware-as-a-Service (RaaS) model, primarily targeting large enterprises in sectors such as healthcare and education.

Data breaches 145

Data breaches Ransomware Passwords Insurance 145

Krebs on Security

MAY 14, 2021

The crime gang announced it was closing up shop after its servers were seized and someone drained the cryptocurrency from an account the group uses to pay affiliates. Affiliates also will be required to get approval before infecting victims.

Ransomware 364

Ransomware Cryptocurrency Cybercrime Healthcare 364

Thales Cloud Protection & Licensing

JANUARY 22, 2025

HHS Office for Civil Rights Proposes Measures to Strengthen Cybersecurity in Health Care Under HIPAA madhav Thu, 01/23/2025 - 06:25 Data Breaches in Healthcare: Why Stronger Regulations Matter A data breach involving personal health information isnt just about stolen filesits a gut punch to trust and a serious shake-up to peoples lives.

Healthcare 62

Healthcare Cybersecurity Data breaches Encryption 62

Security Affairs

SEPTEMBER 18, 2023

Software development company Retool was the victim of a smishing attack that resulted in the compromise of 27 accounts of its cloud customers. Software development company Retool revealed that 27 accounts of its cloud customers were compromised as a result of an SMS-based social engineering attack.

Accountability 136

Accountability Social Engineering Authentication VPN 136

SecureWorld News

DECEMBER 3, 2024

infrastructure, including healthcare facilities and law enforcement agencies, using ransomware variants like Babuk, Hive, and LockBit​. indictments and sanctions, Matveev has operated openly in Russia, even mocking attempts to hold him accountable. Multiple attacks on critical U.S. Matveev has been a target of U.S. Despite U.S.

Cybercrime 104

Cybercrime Ransomware Healthcare Cryptocurrency 104

Malwarebytes

DECEMBER 12, 2023

Healthcare company Norton says a May breach led to the theft of data of around 2.5 Some people also had their financial account numbers, driver licenses or other government ID numbers, and digital signatures also taken. million of its patients, as well as employees and their dependents. Take your time. Set up identity monitoring.

Healthcare 130

Healthcare Identity Theft Passwords Data breaches 130

Krebs on Security

MARCH 1, 2022

27, a new Twitter account “ Contileaks ” posted links to an archive of chat messages taken from Conti’s private communications infrastructure, dating from January 29, 2021 to the present day. The Contileaks account did not respond to requests for comment. hospitals and healthcare providers.”. On Sunday, Feb.

Ransomware 300

Ransomware Healthcare Cybercrime Government 300

Adam Levin

JUNE 4, 2021

The FBI announced last month that Conti ransomware had been used against the Irish healthcare system and at least sixteen U.S. Monitor networks and accounts: Unusual activity may be a sign that a cyberattack is underway. But in this digital edition of “the cobbler’s children have no shoes,” ExaGrid paid cybercriminals $2.6

Ransomware 289

Ransomware Backups Insurance Healthcare 289

SecureWorld News

FEBRUARY 20, 2025

He urges enterprises to implement Privileged Access Management (PAM) solutions and multi-factor authentication (MFA) and to enforce robust password policies to reduce the risk of account compromise. Strengthening identity security Enforce phishing-resistant MFA for all privileged accounts.

Ransomware 113

Ransomware IoT Encryption Social Engineering 113

Malwarebytes

MAY 1, 2025

Phishing In phishing scams, cybercriminals trick people and businesses into handing over sensitive information like credit card numbers or login details for vital online accounts. Lured in by similar color schemes, company logos, and familiar layouts, victims log in to their account by entering their username and password.

Small Business 82

Small Business Cybersecurity Passwords Scams 82

Krebs on Security

DECEMBER 13, 2022

Meanwhile, the hackers responsible are communicating directly with members through the InfraGard portal online — using a new account under the assumed identity of a financial industry CEO that was vetted by the FBI itself. Department of Defense. USDoD’s InfraGard sales thread on Breached.

Hacking 363

Hacking Energy and Utilities Cybercrime Accountability 363