Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

Hackers were inside an Iowa hospital’s network for two weeks
St. Anthony Regional Hospital confirmed patient data was taken by cybercriminals, but the August incident is still being investigated.
Microsoft: Ransomware hit nearly 400 healthcare entities this year—a 300% rise since 2015
A study from Microsoft on the impact of ransomware found unaffected nearby hospitals see a rise in stroke and cardiac arrest cases, in addition to an influx of patients.
Feds make it official: Change data breach was the largest in healthcare history, impacting 100M
Updated reporting from HHS shows UnitedHealth Group's estimate that roughly one-third of people in the U.S. would be affected was correct.
CMS contractor takes $1.2M loss after data breach, DOJ lawsuit
Federal Data Solutions allegedly failed to encrypt screenshots of patient data, stored on a server being paid for with Medicare funds.
Boston Children's physician group suffers data breach
Cybercrime group BrianLian took credit for the attack. It has been responsible for over 60 ransomware attacks in 2024 alone.

Hostage crisis? Ransomware is a threat that demands disaster planning

Considering the growing threat of ransomware in healthcare, organizations need to plan for the day their data become hostages, according to new research from Marshall University. Training and maintaining “digital hygiene” can not only reduce the likelihood of an attack, it also may reduce the financial and operational impacts of an incident.

July 26, 2018

Hackers access health records of 1.5M patients in Singapore

Attempts to hack political players isn’t just an American thing. Lee Hsien Loong, Singapore’s prime minister, has been repeatedly targeted by cyber thieves—and they have accessed a database with information of 1.5 million patients who visited clinics run by SingHealth, the country’s public healthcare system.

July 24, 2018

Could blockchain be the answer to fraud?

Reports of a Chinese vaccine manufacturer fabricating data about its rabies vaccine data has caused an uproar both in China and internationally. It also has also led many to consider blockchain as a potential answer to fraudulent activity.

July 23, 2018

Data breaches are more common—and they're costing millions

Data breaches are major operational disruptors that cost companies millions of dollars—and healthcare ends up getting hit the hardest.

July 13, 2018

Ransomware incidents down 17%—but threat of cyberattacks continues to grow

Cyberattacks are on the rise, but ransomware has declined 17 percent, according to ISACA’s State of Cybersecurity 2018 survey.

June 19, 2018

Mayo Clinic, Medicalchain sign work agreement to explore blockchain

Medicalchain, providers of blockchain technology for the secure storage and transfer of electronic health records, have signed a joint work agreement with Mayo Clinic to improve blockchain technology utilization in healthcare.

June 19, 2018

Survey: More organizations prioritizing cybersecurity in past year

Concern over the state of cybersecurity has led to 23 percent more organizations making improvements to their security systems since last year, according to the 2018 Harvey Nash/KPMG CIO survey.

June 12, 2018

5 tips to reduce end-point complexity, improve strategic alignment

Reducing end-point complexity and improving internal stakeholder alignment should be the focus of hospitals hoping to prevent cyberattacks, according to a study published May 28 in the Journal of Medical Internet Research.

May 30, 2018

Around the web

Cardiovascular Business

Q&A: Why are cardiovascular devices involved in so many recalls? FDA policies may be to blame

Cardiovascular devices are more likely to be in a Class I recall than any other device type. The FDA's approval process appears to be at least partially responsible, though the agency is working to make some serious changes. We spoke to a researcher who has been tracking these data for years to learn more.

Cardiovascular Business

Cardiologist compensation still rising, especially in invasive and interventional cardiology

Updated compensation data includes good news for multiple subspecialties. The new report also examines private equity's impact on employment models and how much male cardiologists earn compared to females.

Cardiovascular Business

FDA’s tirzepatide decision creates uncertainty for patients—and leads to a lawsuit

When drugs are on the FDA’s shortage list, outsourcing facilities can produce their own compounded versions. When the FDA removed tirzepatide from that list with no warning, it created a considerable amount of chaos both behind the scenes and in pharmacies all over the country.

Cybersecurity

Hackers were inside an Iowa hospital’s network for two weeks

Microsoft: Ransomware hit nearly 400 healthcare entities this year—a 300% rise since 2015

Feds make it official: Change data breach was the largest in healthcare history, impacting 100M

CMS contractor takes $1.2M loss after data breach, DOJ lawsuit

Boston Children's physician group suffers data breach

Around the web