Australia Learned Too Late: By the Time You’re Hacked, You’re at the Mercy of the Criminals

Australia Learned Too Late: By the Time You’re Hacked, You’re at the Mercy of the Criminals

Australia is in the midst of a major data breach crisis after the health records of millions of Aussies were released on the dark web by hackers demanding undisclosed ransom. According to an article published online by Gizmodo, Australian insurance provider Medibank negotiated with the unknown hackers before ultimately deciding not to pay—at which point the cybercriminals put private medical information online. The group, which cybersecurity experts are calling BlogXX, appears to be running a …

Read More
Another Ransomware Attack Has Threatened Healthcare Facilities. Are You Taking Precautions?

Another Ransomware Attack Has Threatened Healthcare Facilities. Are You Taking Precautions?

A ransomware attack threw CommonSpirit Health hospitals into disarray recently, leaving electronic health record systems useless and wreaking havoc on understaffed emergency rooms, according to a report from Becker’s Health IT. The company said it was working to determine the depth and effect of the attack. There was no word on who was responsible for the attack or what the end objective may be. The best time to assess the level of risk with any …

Read More
Patient Records Have Been Taken Hostage at a Texas Hospital. Ensure Your System Is Secure

Patient Records Have Been Taken Hostage at a Texas Hospital. Ensure Your System Is Secure

OakBend Medical Center in Richmond, TX is scrambling to deal with a ransomware attack by a group calling itself Daixin Team. As reported by the online tech news publication The Register, the attack initially shut down the hospital’s communication and IT systems and “stole” more than 1 million patient records. It’s unclear what the group’s demands or intentions are, though they’ve threatened to release a “full leak” of the data. The threat of cyber crime …

Read More
A Chicago Urgent Care Center Just Got Hit with a Data Breach. Take Steps to Lower Your Risk

A Chicago Urgent Care Center Just Got Hit with a Data Breach. Take Steps to Lower Your Risk

A Chicago urgent care operator is the latest healthcare facility to be the target of a data breach with the potential to expose the healthcare records and other sensitive information of more than a hundred thousand patients. It’s believed that the breach, which is thought to have occurred over several days in May, was the result of hackers intentionally trying to access the system. While the potential consequences of that to patients are obvious, don’t …

Read More
Be Aware: ‘Big Tech’ Could Be Mining Your Systems for Sensitive Patient Information

Be Aware: ‘Big Tech’ Could Be Mining Your Systems for Sensitive Patient Information

A class action lawsuit filed by a John Doe plaintiff alleges that Meta, parent company of Facebook, has been peeking into the records of at least 644 hospital systems or “medical provider web properties.” As reported in Healthcare Dive, the suit comes on the heels of an investigative report by The Markup and Stat News that revealed specific instances in which Meta’s Pixel tracking tool dug up highly sensitive patient information that winds up in …

Read More
Want Patients to Know When and Where to Find You? Make Sure You’re Up to Date on Your Web Presence

Want Patients to Know When and Where to Find You? Make Sure You’re Up to Date on Your Web Presence

A patient Googles “urgent care near me” and sees your location among the top three results. Even better, they see that your center is on their way home and open until 8. And yet, when they get to your place at 7:25 they find the posted hours say you closed at 7. Here’s the problem in this hypothetical—but very real life—scenario: Even if your website is up to date web crawlers can still “find” and …

Read More
Let the Walgreens Incident Be a Reminder: Cybersecurity Always Has to Be Top of Mind

Let the Walgreens Incident Be a Reminder: Cybersecurity Always Has to Be Top of Mind

Walgreens inadvertently left the data of millions of its customers unprotected thanks to an apparent oversight in the creation of an app used for COVID-19 test registrations. As reported by Recode, information—including names, contact information, and even the results of COVID-19 tests—on anyone who was tested at a Walgreens location within the last year could have been exposed on the open web. While this breach was not the work of hackers or other cybercriminals, the …

Read More
Not Sure You’re Up to Date on Cybersecurity? You’d Better Figure It Out Before Hackers Do

Not Sure You’re Up to Date on Cybersecurity? You’d Better Figure It Out Before Hackers Do

It’s debatable whether it’s safer to keep all your sensitive data in one large system (thereby putting it all at risk in the event of a single breach) vs maintaining a cluster of smaller systems (in which case the risk is multiplied, but the loss of data might not be so great). The answer could depend on the size and scope of your operation, so in many cases it makes sense to engage a cybersecurity …

Read More
Recent Cyberattacks Should Be a Reminder: Prevention Is Far Less Costly Than Regret

Recent Cyberattacks Should Be a Reminder: Prevention Is Far Less Costly Than Regret

When Scripps Health was hit by a cyberattack a few weeks ago, it sent workers scrambling to ascertain the security of sensitive patient health information, company files, and other protected or proprietary data. It’s also likely that the event shook the company’s sense of its own security, probably leaving some with a PTSD-like sense of dread. Needless to say, it also disrupted care at the hospitals and urgent care centers affected. While Scripps has been …

Read More
Recent Hacks and Charges of Censorship Should Be a Wake-Up Call to Check Your Online Security

Recent Hacks and Charges of Censorship Should Be a Wake-Up Call to Check Your Online Security

As 2020 was winding down, we all became aware of a widespread and highly alarming hack that has since been attributed to operators in Russia. While it does not appear to have been targeted at healthcare organizations, the fact that it happened at all should be a reminder of the potential risks you face with proprietary information, access to financial accounts, and HIPAA-protected patient information. Then there’s the whole issue of online censorship that has …

Read More