Jax Spine & Pain Centers Jax Spine and Pain Centers located in Jacksonville, FL has just announced that it experienced a ransomware attack that took…

The U.S. Department of Health and Human Services’ Health Sector Cybersecurity Coordination Center has released a threat report cautioning about the dangers relevant to electronic…

Family Christian Health Center (FCHC) based in Illinois has announced suffering a ransomware attack in November 2021 that resulted in the compromise of the protected…

The FBI has published indicators of compromise (IoCs) and information of the tactics, techniques, and procedures (TTPs) related to Lockbit 2.0 ransomware. The Lockbit ransomware-as-a-service…

Ransomware Attack on Vendor Impacted Allegheny Health Network Home Infusion Patients Allegheny Health Network Home Infusion based in Pittsburgh, PA was alerted concerning a ransomware…

Marietta Area Health Care Inc., also known as Memorial Health System, is confronting a class action lawsuit in relation to a cyberattack and data breach…

A Minnesota network of family medicine practices commenced informing around 200,000 individuals concerning the potential exposure of their personal information and protected health information (PHI)…

The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the National Security Agency (NSA) has released a joint notification to…

There are likely to be new HIPAA rules in 2022 as soon as OCR publicizes the final rule on the proposed amendments to the HIPAA…

The COVID-19 pandemic did not result in any long-lasting adjustments to HIPAA, but it has seen unparalleled flexibilities presented on a short-term basis to make…

Monongalia Health System in Morgantown, WV has begun informing approximately 400,000 individuals that unauthorized people may have acquired their protected health information (PHI) in a…

The University of Houston College of Optometry has learned that an unauthorized person from beyond the United States got access to an affiliated eye clinic’s…

On October 11, 2021, TriValley Primary Care based in Perkasie, PA identified ransomware installed on its systems and servers that held the protected health information…

The Health Care Compliance Association (HCCA) is going to host the 26th Annual Compliance Institute on March 28 – 31, 2022 at the Phoenix Convention…

Retinal Consultants Medical Group, Three Rivers Regional Commission, and ACE Surgical Supply have lately announced cyber attacks by which unauthorized individuals might have obtained the…

The Health Sector Cybersecurity Coordination Center (HC3) of HHS is warning the medical care industry because cyber attackers had been using the Cobalt Strike penetration…

JEV Plastic Surgery & Medical Aesthetics based in Owing Mills, MD has begun informing 1,620 patients regarding the compromise of some of their protected health…

Seneca Family of Agencies based in California, a provider of education, mental health, juvenile justice, placement, and permanency services, noticed unauthorized activity inside its computer…

In July 2021, the well-known REvil (Sodinokibi) ransomware gang seemed to have stopped operations, as its Tor payment website and data leak blog instantly went…

Close to 27,500 people received notification about the stealing of some of their personal information when the American Osteopathic Association (AOA) experienced a cyberattack. AOA…

Public and private sector organizations can use a new tool to assess how vulnerable they are to insider threats. This newly-released Insider Threat Risk Mitigation…

The Food and Drug Administration (FDA) has released an alert to customers of Medtronic wireless insulin pumps regarding a critical security vulnerability affecting selected remote…

The non-profit behavioral health service provider in Clearwater, FL Directions for Living encountered a ransomware attack on July 17, 2021. When Directions for Living discovered…

Family Medical Center of Michigan (FMC) located in Temperance, MI has informed 21,988 patients regarding a July 2020 ransomware attack that led to the likely…

Desert Wells Family Medicine located in Queen Creek, AZ has commenced informing 35,000 individuals concerning the exposure of their protected health information (PHI) in the…

LifeLong Medical Care, a Californian healthcare firm serving patients in Contra Costa, Alameda, and Marin Counties, has informed a number of patients who had their…

There are a lot of advantages that have resulted from HIPAA, the most widely known of which are enhancing privacy security for patients and enhancing…

St. Joseph’s/Candler (SJ/C) hospital system based in Savannah, GA encountered a ransomware attack on June 17, 2021 at about 4 a.m. Upon discovery of the…

The National Institute of Standards and Technology (NIST) has published an important update to its guidance on creating cyber-resilient systems. The draft of the revised…

Prestera Mental Health Center based in West Virginia began informing 2,152 individuals regarding a security breach affecting employee email accounts. On or about April 1,…

UPMC has offered a $2.65 million payout to take care of a data breach legal action filed by workers affected by a data breach in…

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has published a new tool to help organizations assess how proficiently they are equipped to safeguard against…

SonicWall has given an important security notice cautioning users of the Secure Remote Access (SRA) products and Secure Mobile Access (SMA) 100 series operating on…

Hoya Optical Labs Ransomware Attack Impacts Over 3,000 Patients Hoya Optical Labs has begun sending notifications to some patients concerning a ransomware attack that potentially…

The Government Accountability Office has publicized a report after an assessment of the organizational solution to the cybersecurity of the U.S. Department of Health and…

A database that belongs to CVS Pharmacy having roughly 1 billion search records was compromised on the internet. The database contained data regarding searches done…

Arizona Asthma and Allergy Institute mailed breach notification letters to 70,372 individuals who acquired services from October 1, 2015 to June 15, 2020. In accordance…

The medical insurance and healthcare company Humana in Louisville, KY, and its business associate Cotiviti are dealing with a lawsuit because of a data breach…

Scripps Health, the second-largest healthcare provider in San Diego, has begun mailing breach notification letters to 147,267 patients to let them know about the theft…

After the ransomware attack on Colonial Pipeline, several ransomware groups for example REvil and Avaddon stated that they have put in place new policies that…

Arizona Asthma and Allergy Institute based in Peoria, AZ has found out that the protected health information (PHI) of approximately 50,000 patients was momentarily compromised…

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have released a notification concerning DarkSide ransomware in the aftermath of…

Network intrusion problems have overtaken phishing as the top cause of healthcare data security mishaps, which has been the principal cause of data breaches for…

An unauthorized individual acquired access to a River Springs Health Plans employee’s email account and installed malware that possibly permitted the extraction of email account…

The Department of Health and Human Services created the new information blocking and interoperability rules which were included in the 21st Century Cures Act. It…

Advanced persistent threat groups continue to target the worldwide COVID-19 vaccine cold chain, based on an up-to-date IBM Security X-Force report. X-Force researchers publicized a…

Apple Valley Clinic based in Minnesota has begun sending notifications to 157,939 patients regarding the compromise of some of their protected health information (PHI) due…

Wake Forest Baptist Health reported that an unauthorized person obtained access to the networks of Healthgrades Operating Co. Inc, its technology vendor from October 16…

Arbour Hospital, a mental health clinic based in Boston, MA, has resolved a HIPAA Right of Action case with the HHS’ Office for Civil Rights…

The Federal Bureau of Investigation (FBI) has released its yearly Internet Crime Report. There were 791,790 complaints submitted to the FBI’s Internet Crime Complaint Center…

The Arizona Supreme Court brought back a HIPAA violation legal action that a guy from Phoenix filed due to a privacy violation by a pharmacy…

The IBM X-Force released a new report that shows healthcare cyberattacks increased twofold in 2020 and 28% of attacks had been ransomware attacks. The significant…

St. Margaret’s Health Spring Valley in Illinois is looking into a cyberattack that happened on February 20/21, 2021. The hospital’s IT team discovered the security…

PHI of 15,600 Patients Likely Affected in Ransomware Attack at Granite Wellness Centers Granite Wellness Centers located in Northern California encountered a ransomware attack last…

Nebraska Medicine began informing roughly 219,000 patients regarding a malware attack that permitted an unauthorized person to access and get hold of patient data. On…

Easy Healthcare Corp. based in Burr Ridge, IL is facing a lawsuit for the alleged giving of sensitive user data to third-party companies located in…

Tenable published a new report which revealed that more or less half of all healthcare data breaches are caused by ransomware attacks, and in most…

The U.S. Department of Health and Human Services has offered $20 million to enhance data sharing between health information exchanges (HIEs) and immunization information systems….

The Department of Health and Human Services’ Office for Civil Rights (OCR) resolved 19 cases of HIPAA violation in 2020. This year, OCR issued the…

The National Security Agency (NSA) has issued guidance to assist organizations in eliminating weak encryption protocols that threat actors are presently taking advantage of to…

The House Energy and Commerce Committee passed the HIPAA Safe Harbor Bill (HR 7988). The new bill is an attempt to modify the HITECH Act…

GenRx Pharmacy in Scottsdale, AZ is notifying selected patients regarding the potential compromise of their protected health information (PHI) due to a ransomware attack. The…

Cedar Springs Hospital located in Colorado Springs, CO is sending notification to a number of patients regarding the loss of a portable storage device that…

The U.S. National Security Agency (NSA) has given a cybersecurity alert regarding the campaign of Russian state-sponsored hacking groups to target a vulnerability identified in…

Four vulnerabilities were identified in the OpenClinic application, the most severe of which can allow unauthorized users to circumvent authentication and view protected health information…

A recent private industry alert from the Federal Bureau of Investigation (FBI) showed that threat actors employing Ragnar Locker ransomware have leveled up their attacks…

Office 365 users have been notified concerning the current phishing campaign that gathers user credentials. The attackers use advanced tactics to circumvent email security tools…

The TrickBot botnet is being utilized to perform a new phishing campaign that distributes the Buer loader and Bazar backdoor malware. Research experts at Area…

A ransomware attack on Cone Health in Greensboro affected just one practice, Alamance Skin Center in Burlington, NC. The attack took place in late July…

Vastaamo, a top psychotherapy service provider in Finland, has encountered a cyberattack that ended with stolen highly sensitive patient information. The attackers issued threats to…

The U.S. Department of Justice made a statement concerning the indictment of 6 Russian hackers for taking part in the 2017 NotPetya malware attacks and…

The Department of Health and Human Services’ Office for Civil Rights (OCR) has issued the 12th HIPAA penalty for this year 2020. With respect to…

Insider Breach at UMMA Community Clinic University Muslim Medical Association (UMMA) Community Clinic in Los Angeles found out that a former employee sent a secured…

Alameda Health System (AHS) based in Alameda, CA, an outpatient, inpatient, emergency, and wellness services provider within the East Bay area, discovered that an unauthorized…

The Department of Health and Human Services’ Office for Civil Rights recently reported the 10th HIPAA violation fine of 2020. The most current financial penalty…

In 2019, five pharmacies took legal action against Express Scripts for misuse of patient information, which is a HIPAA violation. Express Scripts is the leading…

JAMA published a new research article that revealed the fact that almost all websites providing COVID-19 facts have a third-party tracking code that poses a…

A bill (SB-980) that secures the Genetic Information Privacy Act was passed by the California Senate. At the moment, California Governor Gavin Newsom just has…

The Office for Civil Rights reveals many companies fail to comply with risk analysis, which is an important HIPAA Security Rule requirement. While some HIPAA-covered…

There are three vulnerabilities with low- to medium-severity discovered in Philips SureSigns VS4 vital signs monitors. An attacker could exploit the vulnerabilities and access the…

A ransomware attack on Owens Ear Center located in Fort Worth, Texas occurred on May 28, 2020 that resulted in patient information encryption. The encrypted…

Allergy and Asthma Clinic of Fort Worth has identified an unauthorized person got access to its computer networks and probably acquired the billing data of…

There is a substantial weight of proof that indicate nation-state hacking groups are focusing on organizations doing COVID-19 research and developing the vaccine to get…

The HHS’ Office for Civil Rights (OCR) stated that the Metropolitan Community Health Services has agreed to pay $25,000 to settle its HIPAA Security Rule…

Microsoft has issued a patch to fix a 17-year old wormable remote code execution vulnerability found in Windows DNS Server. The vulnerability may be taken…

Microsoft stopped a massive phishing campaign done in 62 nations. Microsoft’s Digital Crimes Unit (DCU) first recognized the phishing campaign last December 2019. The phishing…

CHI St. Luke’s Health-Memorial Lufkin in Texas sent notification letters to patients regarding the potential exposure of their protected health information (PHI). St Luke’s threat…

Landmark Hospital of Athens located in Georgia suspended three staff members who are alleged of viewing, copying or exposing patient records. The likely HIPAA breach…

There were 19 zero-day vulnerabilities found in the TCP/IP communication software library which Treck Inc. created. Billions of interconnected gadgets spanning almost all industries, this…

The Commonwealth of Kentucky Personnel Cabinet submitted a report on two data breaches which happened in late April and in May. The attacks resulted in…

The healthcare provider Aveanna Healthcare centered in Atlanta, GA is charged with a class action case because of a data breach that happened last summer…