24,400 Rite Aid Customers Had Personal Information Compromised in May Cyberattack Rite Aid has reported the theft of the protected health information (PHI) of about…

98,000 UT Southwestern Medical Center Patients Affected by MOVEit Cyberattack UT Southwestern Medical Center (UTSW) has reported the theft of the protected health information (PHI)…

The Occupational Safety and Health Administration (OSHA) has given details on the health and safety failures of two hospitals that resulted in about $24,000 in…

ARx Patient Solutions Reports Email Account Breach from 2022 Healthcare provider ARx Patient Solutions, based in Kansas lately informed the Maine Attorney General regarding a…

Kannact & Vincera Institute Encounter Cyberattacks Home care service provider, Kannact Inc. based in Albany, OR, states it discovered unauthorized access to its computer system…

Washington Hospital Pays $240,000 HIPAA Fine for Security Guards’ Medical Records Access All reported protected health information (PHI) breaches involving 500 or more people and…

Mistrial Announced in Criminal HIPAA Prosecution of Doctors Who Shared PHI with Undercover FBI Agent The prosecution of two physicians charged with criminal HIPAA violations…

In case your HIPAA-covered company is intending to use Microsoft Teams to collect, save, share, or send electronic PHI, you must understand how to make…

Cyberattack Affected 28,000 Clarke County Hospital Patients Clarke County Hospital based in Osceola, IA, began informing 28,003 present and past patients concerning a security breach…

The Federal Trade Commission (FTC) has suggested adjustments to the Health Breach Notification Rule to reinforce the applicability of the Rule to health applications and…

Oklahoma Institute of Allergy Asthma and Immunology Stops Operations After Cyberattack The Oklahoma Institute of Allergy Asthma and Immunology was compelled to stop trading as…

When the Health Insurance Portability and Accountability Act (HIPAA) became law in 1996, the Department of Health and Human Services (HHS) was required to create…

A new survey involving IT decision makers provided information about password management practices and the growing adoption of passwordless authentication. Password manager provider, Bitwarden, had…

Insight Global Settles Class Action Data Breach Lawsuit Insight Global LLC has made a decision to resolve a class action lawsuit associated with an April…

Employer Pays $15,000 Damages for Firing a COVID-19 Whistleblower An employee got fired for pointing out  COVID-19 safety concerns. But now he will get $15,000…

The home healthcare provider based in White Plains, NY, Unlimited Care Inc., suffered a cyberattack that disrupted its system on February 16, 2023. Unlimited Care…

Montgomery General Hospital Suffers Ransomware Attack and Data Leak Montgomery General Hospital located in West Virginia encountered a cyberattack that allowed unauthorized persons to access…

20% of Ransomware Attacks Involve Victim Harassment Ransomware groups are more and more omitting file encryption and are focusing on data theft and extortion tactics,…

The Health Sector Cybersecurity Coordination Center (HC3) has provided threat intelligence advice regarding the Black Basta ransomware group to aid network defenders to avoid and…

CISA and the FBI published a joint cybersecurity advisory and shared information about the tactics, techniques, and procedures (TTPs) utilized by the Royal ransomware group…

The Federal Trade Commission (FTC) has reported that it has reached a settlement with BetterHelp Inc., an online counseling service provider based in California, to…

Hacking Incident at The Hutchinson Clinic in December 2022 The healthcare company The Hutchinson Clinic based in Hutchinson, KS lately reported that hackers gained access…

Hacking and Data Theft Incident at CentraState Healthcare System CentraState Healthcare System based in Freehold Township, NJ has just reported that unauthorized individuals breached its…

$3 Million Settlement Offered to Resolve 20/20 Eye Care Network Data Breach Lawsuit iCare Acquisitions has offered to pay $3 million to settle claims from…

Healthcare providers are spending on cybersecurity to enhance their protection against increasing and more sophisticated cyberattacks. Even with the improvements in an organization’s security posture,…

Whenever a data breach happens and sensitive data is exposed, the HIPAA Breach Notification Rule demands the notification of affected persons. The FTC Health Breach…

Ransomware groups are earning less from their cyberattacks as fewer victims pay ransoms to acquire the decryption keys and keep the stolen information from publicity,…

A Washington therapist, Robert S. Miller LICSW, ACSW (RSM), lately informed 640 present and past clients concerning a phishing attack that led to the compromise…

Healthcare ransomware attacks have doubled in the last 5 years, data restoration from backups has lessened, and it is now typical for information to be…

A lot of ransomware attacks remain performed on healthcare providers, however, identifying the magnitude to which healthcare companies are being targeted by ransomware attackers is…

Plaintiffs in a combined class action lawsuit against Meta recently sought an injunction versus Meta to make the company stop getting and transmitting information accumulated…

Passwords can give a good level of security, yet oftentimes end users pick poor passwords that don’t make it difficult for attackers. Plenty of the…

Cyberattacks have grown in frequency and complexity to the point that all healthcare organizations are likely to experience a successful attack sooner or later. It…

The Health Sector Cybersecurity Coordination Center (HC3) has published an alert to the healthcare and public health (HPH) sector concerning Royal ransomware attacks. This new…

A Notice of Proposed Rulemaking (NPRM) has been released by the Department of Health and Human Services (HHS) and the Substance Abuse and Mental Health…

The U.S. Department of Justice has charged 10 people with business email compromise scams that brought about losses of over $11.1 million from Medicare, Medicaid,…

CorrectCare Integrated Health, a medical claims processor, lately informed its clients about the accidental exposure of the protected health information (PHI) of a number of…

The federal government has released an alert to the healthcare industry concerning the danger of cyberattacks conducted by Iranian threat actors. Iranian state-sponsored actors do…

The OpenSSL Project stated recently that it would release a patch on November 1, 2022, to fix a critical OpenSLL vulnerability. Information on how to…

Database Misconfiguration at Delaware Department of Health and Social Services The Delaware Department of Health and Social Services, Division of Developmental Disabilities Services (DDDS) has…

Lifespire Services located in New York provides people with developmental handicaps healthcare services. The company initially reported a security incident in April 2022 and now…

Threat actors commonly use living-off-the-land techniques for performing reconnaissance, privilege elevation, persistence, and moving laterally inside networks undiscovered. Similar software and security resources employed by…

An affiliate of the notorious Netwalker ransomware group was sentenced to 20 years in prison because of taking part in ransomware attacks on U.S. companies….

The Health Sector Cybersecurity Coordination Center (HC3) has given an alert concerning the Chinese state-sponsored threat actor monitored as APT41. This threat group has been…

Lubbock Heart & Surgical Hospital based in Texas lately reported its encounter with a hacking incident that disrupted the operations of part of its IT…

Ambry Genetics has made a decision to resolve a class action lawsuit that was because of a breach of the protected health information (PHI) of…

The Michigan law firm, Warner Norcross and Judd LLP, has released notification letters to 255,160 persons informing them about a data breach in October 2021…

First Street Family Health located in Salida, CO has experienced a dangerous cyberattack that led to the exfiltration of files composed of patient data and…

The California Department of Corrections and Rehabilitation (CDCR) has just learned that unauthorized persons have acquired access to its information systems. The affected system stored…

A digital marketing and analytics firm located in Idaho filed a lawsuit against the Federal Trade Commission for allegedly violating the Federal Trade Commission (FTC)…

Zenith American Solutions, the Sound Health and Wellness Trust’s third-party administrator, just informed people concerning a mailing error that exposed the Social Security numbers of…

Cyberattacks on companies are growing year after year in all industries. Cyberattacks that involve third parties likewise increased. From the viewpoint of a cyber attacker,…

Tenet Healthcare lost $100 million in earnings and mitigation expenses due to a cyberattack and data breach that occurred in Q2 of 2022. Tenet Healthcare…

Benson Health in North Carolina has lately begun informing 28,913 individuals about the potential access or acquisition of their protected health information (PHI) during a…

Associated Eye Care Partners (AECP) based in Montana has lately begun informing patients about the compromise of their private health data because of a data…

Jack Hughston Memorial Hospital Reported Cyberattack Jack Hughston Memorial Hospital based in Phoenix City, AL has just announced that attackers have obtained access to its…

Hearst Health subsidiary, MCG Health located in Seattle, is confronting multiple class-action lawsuits because of a data breach that affected roughly 10 healthcare institutions, for…

Meta is facing a lawsuit that alleges the social media giant has been knowingly acquiring patient data from hospital sites through the Meta Pixel tracking…

San Diego Family Care, a dental, medical, & mental health services provider in California, has decided to settle a class-action lawsuit filed by patients impacted…

Allaire Healthcare Group and Platinum Hospitalists have lately reported that an unauthorized individual has acquired access to the email account of a worker and likely…

Allwell Behavioral Health Services based in Zanesville, OH, has reported that an unauthorized individual accessed a computer system employed to keep quality assurance data associated…

For the last 15 years, Verizon has been creating yearly Data Breach Investigation Reports (DBIR). The report this year confirms just how awful the past…

Solara Medical Supplies proposed to pay $9.76 million as a settlement for a class-action lawsuit associated with a 2019 data breach. This proposal has obtained…

Researchers discovered that a misconfigured AWS S3 bucket is leaking data. This cloud storage belongs to a breast cancer support charity based in Ardmore, PA,…

The average ransom payment related to ransomware attacks dropped by 34% in the 1st Q of 2022 from Quarter 4 of 2021’s all-time high, in…

The American Dental Association (ADA) experienced a cyberattack and was compelled to take lots of of its systems offline. The ADA website is presently accessible…

New research shared in JAMA Open Network revealed that quick intervention right after an incident of unauthorized access to protected health information (PHI) by medical…

Five zero-day vulnerabilities were found in Aethon TUG autonomous mobile robots, which are utilized in hospitals globally for moving merchandise, drugs, and other medical resources….

The Department of Health and Human Services’ Office for Civil Rights has publicized a Request for Information (RFI) in connection with two specific specifications of…

The Need to Have Reforms Before HIPAA, the medical insurance sector is complicated. As this sector changed, a lot of jurisdictions had viewed the ease…

Present Biden has released a notice regarding the elevated threat of cyberattacks brought on by Russian state-sponsored hackers because of the economic sanctions enforced on…

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have given a joint cybersecurity alert cautioning that Russian state-sponsored actors…

Jax Spine & Pain Centers Jax Spine and Pain Centers located in Jacksonville, FL has just announced that it experienced a ransomware attack that took…

The U.S. Department of Health and Human Services’ Health Sector Cybersecurity Coordination Center has released a threat report cautioning about the dangers relevant to electronic…

Family Christian Health Center (FCHC) based in Illinois has announced suffering a ransomware attack in November 2021 that resulted in the compromise of the protected…

The FBI has published indicators of compromise (IoCs) and information of the tactics, techniques, and procedures (TTPs) related to Lockbit 2.0 ransomware. The Lockbit ransomware-as-a-service…

Ransomware Attack on Vendor Impacted Allegheny Health Network Home Infusion Patients Allegheny Health Network Home Infusion based in Pittsburgh, PA was alerted concerning a ransomware…

Marietta Area Health Care Inc., also known as Memorial Health System, is confronting a class action lawsuit in relation to a cyberattack and data breach…

A Minnesota network of family medicine practices commenced informing around 200,000 individuals concerning the potential exposure of their personal information and protected health information (PHI)…

The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the National Security Agency (NSA) has released a joint notification to…

There are likely to be new HIPAA rules in 2022 as soon as OCR publicizes the final rule on the proposed amendments to the HIPAA…

The COVID-19 pandemic did not result in any long-lasting adjustments to HIPAA, but it has seen unparalleled flexibilities presented on a short-term basis to make…

Monongalia Health System in Morgantown, WV has begun informing approximately 400,000 individuals that unauthorized people may have acquired their protected health information (PHI) in a…

The University of Houston College of Optometry has learned that an unauthorized person from beyond the United States got access to an affiliated eye clinic’s…

On October 11, 2021, TriValley Primary Care based in Perkasie, PA identified ransomware installed on its systems and servers that held the protected health information…

The Health Care Compliance Association (HCCA) is going to host the 26th Annual Compliance Institute on March 28 – 31, 2022 at the Phoenix Convention…

Retinal Consultants Medical Group, Three Rivers Regional Commission, and ACE Surgical Supply have lately announced cyber attacks by which unauthorized individuals might have obtained the…

The Health Sector Cybersecurity Coordination Center (HC3) of HHS is warning the medical care industry because cyber attackers had been using the Cobalt Strike penetration…

JEV Plastic Surgery & Medical Aesthetics based in Owing Mills, MD has begun informing 1,620 patients regarding the compromise of some of their protected health…

Seneca Family of Agencies based in California, a provider of education, mental health, juvenile justice, placement, and permanency services, noticed unauthorized activity inside its computer…

In July 2021, the well-known REvil (Sodinokibi) ransomware gang seemed to have stopped operations, as its Tor payment website and data leak blog instantly went…