Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

Data breach at Oracle Health leads to extortion of hospitals
A legacy server accessed with stolen credentials is being blamed for the incident. However, the nature and scope of the attack are still being investigated, with Oracle reportedly working with the FBI to gather details.
Change Healthcare files to have federal lawsuits dismissed
There are at least 65 consolidated cases pending in federal courts that stem from the 2024 data breach on the claims processor's network. A judge in Minnesota has asked that the lawsuits be coordinated and consolidated as much as possible.
ISIS is not launching terrorist attacks against hospitals, FBI says
Trade groups released a statement denying the claim's credibility, but they fear some may be inspired by a widely shared social media post.
ChatGPT exploit could cause data breaches in healthcare, experts warn
According to a report from cybersecurity firm Veriti, more than 10,000 attempted cyberattacks were conducted in a single week, with financial institutions, healthcare and government agencies the prime targets.
Hospitals snail-mailed ransomware hoax; FBI investigation ongoing
A hospital in California received a physical letter in the mail stating its data had been compromised, only to discover the claim was part of a nationwide "social engineering scam."

Atrium Health sued for violating patient privacy, sharing data with Facebook and Google

In a court filing, the plaintiffs claim Atrium Health used Meta's Pixel code on its website, resulting in patients receiving targeted ads.

Massive data trove from Change Healthcare hack now for sale on dark web

Cybercriminal group RansomHub claims to have protected health information from nearly every American.

money cybersecurity ransomware health IT data breach hacker

Change Healthcare faces second ransom as cybercriminals leak stolen data

A new hacker group is claiming credit for the data breach, first reported in February. Change Healthcare has already paid criminals a $22 million ransom.

This week in the Change Healthcare situation: A recap and update in 10 notable quotes

‘I have all kinds of nightmare scenarios playing out in my head, like how am I going to pay my bills?’

This week in the Change Healthcare hack fallout: 10 notable quotes

“ALPHV/BlackCat and their affiliates haven’t attacked Change Healthcare. This time, they’ve attacked our families.”

HHS to investigate Change Healthcare cyberattack

“Given the unprecedented magnitude of this cyberattack, and in the best interest of patients and health care providers, OCR is initiating an investigation into this incident,” states a “Dear Colleague” letter from OCR director Melanie Fontes Rainer.

Change Healthcare cyberattack: A recap and update in 10 quotes

“This is what happens when everything merges and you only have one option.”

Provider orgs on Change Healthcare cybersecurity crisis: ‘Help!’

As the tsunami of the Change Healthcare cyberattack continues to inundate the healthcare landscape, the AMA and AHA have sent separate letters to federal officials calling for a lifesaver.

Around the web

Cardiovascular Business

ACC urges RFK Jr. to make Medicare reform a priority, warns against mass layoffs

The American College of Cardiology has sent a letter to HHS Secretary Robert F. Kennedy Jr. that outlines some of the organization’s central priorities and concerns.

Radiology Business

FDA announces recall of Medtronic interventional radiology devices after 17 injuries, 4 deaths

One product is being pulled from the market, and the other is receiving updated instructions for use.

AI in Healthcare

What federal regulators can learn from the states about AI oversight

If the Trump administration continues taking a laissez-faire stance toward AI—including AI used in healthcare—why not let the states go it alone on regulating the technology?

Cybersecurity

Data breach at Oracle Health leads to extortion of hospitals

Change Healthcare files to have federal lawsuits dismissed

ISIS is not launching terrorist attacks against hospitals, FBI says

ChatGPT exploit could cause data breaches in healthcare, experts warn

Hospitals snail-mailed ransomware hoax; FBI investigation ongoing

Around the web