Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

Healthcare hacker sentenced to 10 years in prison
Robert Purbeck, 45, of Georgia was found with data on more than 132,000 individuals taken from various breaches, including multiple providers, a police station and a city government.
Ransomware group deploys ticking clock to threaten Georgia hospital
Memorial Hospital and Manor announced the data breach through Facebook on Nov. 3. The cybercrime group Embargo has taken credit for the incident, claiming to have 1.15TB of stolen information.
Hackers were inside an Iowa hospital’s network for two weeks
St. Anthony Regional Hospital confirmed patient data was taken by cybercriminals, but the August incident is still being investigated.
Microsoft: Ransomware hit nearly 400 healthcare entities this year—a 300% rise since 2015
A study from Microsoft on the impact of ransomware found unaffected nearby hospitals see a rise in stroke and cardiac arrest cases, in addition to an influx of patients.
Feds make it official: Change data breach was the largest in healthcare history, impacting 100M
Updated reporting from HHS shows UnitedHealth Group's estimate that roughly one-third of people in the U.S. would be affected was correct.

Change Healthcare cyberattack: A recap and update in 10 quotes

“This is what happens when everything merges and you only have one option.”

March 8, 2024

Provider orgs on Change Healthcare cybersecurity crisis: ‘Help!’

As the tsunami of the Change Healthcare cyberattack continues to inundate the healthcare landscape, the AMA and AHA have sent separate letters to federal officials calling for a lifesaver.

March 5, 2024

The American Hospital Association (AMA) is warning healthcare systems the Russians may attempt cyber attacks amid rising tensions of the war in Ukraine and the international community's response. #Ukraine #warinukraine #ukrainewar

Change Healthcare cyberattack outage now at 9 days

What was initially identified as “connectivity issues” last week has spiraled into a nine day (and counting) cybersecurity saga for UnitedHealth Group’s Change Healthcare.

February 29, 2024

money cybersecurity ransomware health IT data breach hacker

Cyberattack temporarily shuts down UnitedHealth’s Change Healthcare

The incident began Wednesday morning, with system update trackers noting “connectivity issues” before later confirming it was in fact a cybersecurity issue.

February 22, 2024

Notorious hospital cybervillain acknowledges guilt, heads to prison

An international cybercrime mastermind who compiled a long resumé of remote break-ins—including a hit that cost a major U.S. medical center $30 million—has pled guilty to two counts of conspiracy.

February 19, 2024

HCA Healthcare appoints Chad Wasserman as new chief information officer

Wasserman will now lead the full team of over 6,700 IT staff in providing the organization’s infrastructure, cloud services, automation, data engineering, software development and clinical technology initiatives.

February 6, 2024

healthcare technology safety hazards ECRI

ECRI: Top 10 healthcare technology hazards that are avoidable (by suppliers) and/or minimizable (by providers)

The nonprofit patient-safety organization says the list “reflects our judgment about which risks should be given attention now to help care providers, as well as device manufacturers, prioritize their patient safety efforts.”

January 31, 2024

AMA-backed Health2047 rolls out new cybersecurity platform

HEAL Security's platform is specifically designed to address the particular cybersecurity challenges faced by healthcare providers.

January 24, 2024

Around the web

Cardiovascular Business

Payment cuts and beyond: Key takeaways for cardiologists from the 2025 Medicare Physician Fee Schedule

The American College of Cardiology has shared its perspective on new CMS payment policies, highlighting revenue concerns while providing key details for cardiologists and other cardiology professionals.

AI in Healthcare

A modest proposal to rally AI regulators around a simple game plan

As debate simmers over how best to regulate AI, experts continue to offer guidance on where to start, how to proceed and what to emphasize. A new resource models its recommendations on what its authors call the “SETO Loop.”

Cardiovascular Business

FDA commissioner urges clinicians to join fight against medical misinformation

FDA Commissioner Robert Califf, MD, said the clinical community needs to combat health misinformation at a grassroots level. He warned that patients are immersed in a "sea of misinformation without a compass."

Cybersecurity

Healthcare hacker sentenced to 10 years in prison

Ransomware group deploys ticking clock to threaten Georgia hospital

Hackers were inside an Iowa hospital’s network for two weeks

Microsoft: Ransomware hit nearly 400 healthcare entities this year—a 300% rise since 2015

Feds make it official: Change data breach was the largest in healthcare history, impacting 100M

Around the web