Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

Change Healthcare files to have federal lawsuits dismissed
There are at least 65 consolidated cases pending in federal courts that stem from the 2024 data breach on the claims processor's network. A judge in Minnesota has asked that the lawsuits be coordinated and consolidated as much as possible.
ISIS is not launching terrorist attacks against hospitals, FBI says
Trade groups released a statement denying the claim's credibility, but they fear some may be inspired by a widely shared social media post.
ChatGPT exploit could cause data breaches in healthcare, experts warn
According to a report from cybersecurity firm Veriti, more than 10,000 attempted cyberattacks were conducted in a single week, with financial institutions, healthcare and government agencies the prime targets.
Hospitals snail-mailed ransomware hoax; FBI investigation ongoing
A hospital in California received a physical letter in the mail stating its data had been compromised, only to discover the claim was part of a nationwide "social engineering scam."
Maryland insurer sues Change Healthcare for $900K
Over a year after the breach on Change Healthcare, CareFirst BlueCross BlueShield of Maryland has filed a lawsuit saying it suffered data loss stemming from the incident.

Alabama security breach exposes personal information of cardiologists, heart patients

Both patients and physicians were impacted by the incident, with outside forces gaining access to everything from names and social security numbers to banking information.

Hospital system in Michigan hit by cyberattack for second time in a year

McLaren Health Care said it is not sure if patient data was taken by hackers and it’s working with a cybersecurity firm to gather details.

Around the world, healthcare still pays more than any other sector for data breaches

No industry has taken cybercrime on the chin more than healthcare over the past 13 years. That trend continues in 2024, as global data breaches cost healthcare $9.77 million between March 2023 and February 2024.

North Korean hospital hacker indicted in the US

A North Korean national who may or may not still reside in his home country has been indicted for allegedly leading ransomware attacks against U.S. hospitals.

UnitedHealth sued by pharmacists, providers hurt by Change Healthcare hack

The National Community Pharmacists Association and nearly 40 provider groups are seeking class-action status for their lawsuit against UnitedHealth Group and its subsidiaries. The plaintiffs argue they are still struggling to file claims after the February breach of Change Healthcare.

Nationwide IT outage leaves hospitals without EHRs

Many hospitals that use Epic were unable to access services, forcing them to operate on pen-and-paper and cancel non-emergency care delivery. The disruption was caused by an error with security vendor CrowdStrike.

Senators introduce bill to bolster healthcare cybersecurity

The Healthcare Cybersecurity Act would improve cooperation between HHS and CISA to ideally speed up the response to cyberattacks.

State attorneys general send warnings of Change Healthcare breach, urge residents to respond

Several state attorneys general have issued notices to residents regarding the Change Healthcare breach, asking them to sign up for credit monitoring and identity theft protection.

Around the web

Cardiovascular Business

ACC urges RFK Jr. to make Medicare reform a priority, warns against mass layoffs

The American College of Cardiology has sent a letter to HHS Secretary Robert F. Kennedy Jr. that outlines some of the organization’s central priorities and concerns.

Radiology Business

FDA announces recall of Medtronic interventional radiology devices after 17 injuries, 4 deaths

One product is being pulled from the market, and the other is receiving updated instructions for use.

AI in Healthcare

What federal regulators can learn from the states about AI oversight

If the Trump administration continues taking a laissez-faire stance toward AI—including AI used in healthcare—why not let the states go it alone on regulating the technology?

Cybersecurity

Change Healthcare files to have federal lawsuits dismissed

ISIS is not launching terrorist attacks against hospitals, FBI says

ChatGPT exploit could cause data breaches in healthcare, experts warn

Hospitals snail-mailed ransomware hoax; FBI investigation ongoing

Maryland insurer sues Change Healthcare for $900K

Around the web