Security news aggregator

Latest coverage for Healthcare

Stay updated with the latest healthcare cybersecurity trends, news, and tips to protect patient data and comply with medical industry security standards.

10 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Healthcare is the delivery of clinical care and related services through hospitals, clinics, laboratories, pharmacies, insurers, and connected medical devices. It depends on electronic health records (EHRs), patient identity systems, diagnostic and imaging platforms, medication and scheduling systems, and data exchanges between organizations. These environments hold sensitive health and payment information, while the availability and integrity of systems can affect treatment, diagnostics, and patient safety.

Security concerns include unauthorized access or disclosure of records, alteration of clinical data, and disruption of care through attacks on EHRs, connected devices, or third-party services. Defenses require risk-based access controls, strong authentication, network separation where appropriate, secure device and software maintenance, backups that support clinical continuity, and tested downtime and incident-response procedures. Vulnerability management must account for legacy systems and devices that cannot be patched quickly. Privacy and compliance obligations, such as HIPAA in the United States, shape how organizations collect, use, share, retain, and report health information.

Showing 10 most recent headlines Filtered view
Bank Info Security 2 years, 5 months ago

Groups Urge FTC to Scrutinize Google Location Data Practices

Complaint Alleges Tech Giant Is Breaking Privacy Promises, Putting Patients at RiskTwo tech advocacy groups are pushing the Federal Trade Commission to investigate Google, alleging the company has reneged on a promise it made after the Supreme Court's 2022 overturn of Roe v. Wade to promptly delete location data about users' visits to sensitive places, such as abortion clinics.

Bank Info Security 2 years, 5 months ago

Finnish Hacker Denies Role In Psychotherapy Clinic Attack

Aleksanteri Kivimäki Disputed In Court Evidence Collected by PoliceA Finnish man accused of hacking and leaking mental health records downplayed his tech skills and said during cross-examination in court he had no part in the data breach. Kivimäki said he's been engaged with computers since aged three but described his programming skills as "pretty insignificant."

Bank Info Security 2 years, 5 months ago

ISMG Editors: Why Are Crypto Phishing Attacks Surging?

Legal Moves: Crypto Theft Lawsuit; Hospital Sues LockBit GangIn the latest weekly update, ISMG editors discussed why crypto-seeking drainer scam-as-a-service operations are thriving, a novel legal move that recovered a hospital's stolen data, and a ground-breaking case involving bitcoin that could streamline recovery for victims.

Bank Info Security 2 years, 5 months ago

AHA: Rise in Scams Targeting IT Help Desks for Payment Fraud

American Hospital Association Warns of Social Engineering SchemesThe American Hospital Association is warning of increasingly sophisticated social engineering scams targeting hospital IT help desks with schemes involving the stolen credentials of revenue cycle and other finance employees to commit payment fraud against the institutions.

Case Against Meta Likely Moving Forward After Court Heard Dismissal ArgumentsA federal judge said he is inclined to let proceed a putative class action lawsuit against Meta over its gathering of data from medical center patient portals through a web activity tracking tool. U.S. District for the District of Northern California Judge William Orrick on heard arguments.

Bank Info Security 2 years, 6 months ago

How a Novel Legal Maneuver Got a Hospital's Stolen Data Back

The ubiquity and anonymity of cryptocurrencies are fueling economic, legal and ethical challenges that put healthcare entities in the crosshairs of cybercriminals, said David Hoffman, general counsel of Claxton-Hepburn Medical Center, which recently filed a lawsuit against ransomware gang LockBit.

Bank Info Security 2 years, 6 months ago

NC Health System Agrees to Pay $6.6M in Web Tracking Case

Novant Health Is Among Latest Organizations Opting to Settle Patient Privacy ClaimsA North Carolina healthcare system has agreed to pay $6.6 million to settle a consolidated class action lawsuit involving its use of tracking tools in its websites and patient portals. The suit alleges the website trackers sent sensitive patient information to third parties without their consent.

Bank Info Security 2 years, 6 months ago

Exclusive: Cloud Vendor Returns Stolen Hospital Data

Alliance Had Sued LockBit Gang to Force Cloud Firm to Release Affected Patient DataA cloud services firm has turned over to a New York hospital alliance the patient data stolen in a ransomware attack by LockBit. The hospital group had filed a lawsuit against LockBit as a legal maneuver to force the storage firm to return data the cybercriminals had stashed on the vendor's servers.

Bank Info Security 2 years, 6 months ago

Mississippi Health System Ransomware Attack Affects 253,000

Report to State Regulators Indicates Big Jump in Number of Patients AffectedA Mississippi health system is notifying nearly 253,000 individuals that their data was potentially compromised in a "malicious and sophisticated ransomware" attack last August that also took IT systems offline. The cybercriminal gang Rhysida had claimed responsibility for the assault.