Health IT company Episource confirmed a ransomware attack of its network exposed data from payer and provider customers alike, with details such as medical diagnoses and treatments possibly stolen by nefarious actors. 

Law firm Wright & Schulte said they filed a legal complaint on behalf of patients, pointing to the health system’s alleged lack of transparency and negligence in protecting data as the basis for the lawsuit.

Researchers at Cybernews said they discovered a database online containing patient names, contact information and appointment records from millions of patients who received dental care. No one has claimed the database. However, clues point to it belonging to Gargle, an industry marketing group. 

Faranak Firozan, 47, is a cybersecurity expert at Nvidia who regularly spoke on the topic of “cyber laundering.” Prosecutors in California allege she submitted fraudulent medical claims to an employer-sponsored insurance plan, bilking Cigna out of $100,000.

GE HealthCare has warned that the devices could potentially be accessed and manipulated by an outside party. The FDA has classified this as a Class II recall. 

In a post on the dark web, well-known hacker group Interlock is offering a 941 GB trove for sale, said to contain patient financial records, driver's licenses, clinical summaries and more from Ohio-based Kettering Health.

"With significantly strengthened penalties, standardized reporting requirements and unprecedented enforcement commitments, the regulatory landscape has dramatically shifted," the AMA wrote. 

Leveraging the upsides of RPM with AI demands human attention to numerous challenges. Primary among these are privacy and cybersecurity risks, researchers report.