Security news aggregator

Latest coverage for Healthcare

Stay updated with the latest healthcare cybersecurity trends, news, and tips to protect patient data and comply with medical industry security standards.

12 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Healthcare is the delivery of clinical care and related services through hospitals, clinics, laboratories, pharmacies, insurers, and connected medical devices. It depends on electronic health records (EHRs), patient identity systems, diagnostic and imaging platforms, medication and scheduling systems, and data exchanges between organizations. These environments hold sensitive health and payment information, while the availability and integrity of systems can affect treatment, diagnostics, and patient safety.

Security concerns include unauthorized access or disclosure of records, alteration of clinical data, and disruption of care through attacks on EHRs, connected devices, or third-party services. Defenses require risk-based access controls, strong authentication, network separation where appropriate, secure device and software maintenance, backups that support clinical continuity, and tested downtime and incident-response procedures. Vulnerability management must account for legacy systems and devices that cannot be patched quickly. Privacy and compliance obligations, such as HIPAA in the United States, shape how organizations collect, use, share, retain, and report health information.

Showing 12 most recent headlines Filtered view

Incident Spotted in March 2024 Is Yet Another Attack Against Medical Billing FirmsA Nebraska-based firm that provides revenue cycle management and billing services to healthcare firms is notifying tens of thousands of people and an undisclosed number of companies that their personal, health and financial information was compromised in a March 2024 hack.

Bank Info Security 1 year, 3 months ago

RFK Jr. Cuts at HHS Affect HIPAA, Cyber Response Units

HHS Laying Off 10,000 More People, Consolidating Divisions, Shifting PrioritiesThe U.S. Department of Health and Human Services announced a major restructuring and workforce reductions on Thursday. The changes disclosed so far include reshuffling units of HHS involved in healthcare sector cybersecurity response activities and HIPAA regulatory work.

Bank Info Security 1 year, 3 months ago

FBI Has Found No Credible Terror Threats to Hospitals

'Extensive' Probe Launched After Warning of Coordinated Attacks Posted on XThe FBI has not identified any credible terrorist threats of physical attacks on U.S. hospitals, said the Health Information Sharing and Analysis Center and the American Hospital Association, one week after the two groups issued a joint warning about threats surfacing on social media.

Bank Info Security 1 year, 3 months ago

Advanced Fined 3 Million Pounds Over 2022 Ransomware Hack

UK ICO Says Advanced's Security Measures 'Fell Seriously Short'A British IT service company must pay a 3.07 million pound fine for a 2022 ransomware hack that exposed medical records of tens of thousands of National Health Service patients. Hackers breached the Advanced system through a user account that did not have multifactor authentication in place.

Bank Info Security 1 year, 3 months ago

Fitness Firm Pays Feds $228K in Misconfiguration Breach

Settlement Is 5th HIPAA Enforcement Action Under HHS's OCR Risk Analysis InitiativeAn Illinois-based firm that provides fitness and wellness plans to clients throughout the U.S. has agreed to pay federal regulators a settlement of nearly $228,000 and implement a corrective action plan following an IT misconfiguration incident caused several breaches in late 2018 and early 2019.

Bank Info Security 1 year, 3 months ago

HHS OCR Launches New Round of HIPAA Compliance Audits

Audits Focus on HIPAA Security Rule Provisions Related to Ransomware, HackingFederal regulators have quietly resumed compliance audits of HIPAA-regulated organizations. With the surge in ransomware and other hacks reported in recent years, the focus of the audits are on provisions of the HIPAA security rule most relevant to these attacks, said a government official.

Bank Info Security 1 year, 3 months ago

23andMe's Bankruptcy: What Does it Mean for Data Privacy?

California Alerting Consumers to Delete Data, Samples Shared With FirmGenetics testing firm 23andMe has filed for Chapter 11 bankruptcy protection and says it is looking to sell the company. But what does that potentially mean for the firm's trove of highly sensitive health and ancestry information pertaining to millions of consumers?

Bank Info Security 1 year, 3 months ago

Wheelchair Firm Ramps Up Notices to 500,000 for Email Hack

Large Health Data Breach Started With Phishing Lure in Employees' EmailTennessee-based Numotion, one of the largest U.S. providers of wheelchairs and other health-related mobility products is notifying nearly 500,000 people of a 2024 email hacking incident that potentially compromised their personal and health-related information.