Category: cybersecurity

More than 4.2 million patients were affected in the largest data healthcare data breach reported so far in 2023, HIPAA Journal reported March 15.

Data exfiltration was a factor in 70 percent of ransomware incidents affecting healthcare organizations, a March 9 brief from HHS’ Health Sector Cybersecurity Coordination Center found.

San Bernardino, Calif.-based Regal Medical Group is facing 11 lawsuits for a December ransomware attack that compromised the protected health information of 3.3 million patients, Bloomberg Law reported March 14. 

Livonia, Mich.-based Trinity Health filed a data breach notice with the Massachusetts attorney general March 9 after it learned that some patient information was compromised as a result of unauthorized access, JDSupra reported March 14.  

A Lehigh Valley Health Network patient whose nude photos were posted to the dark web by a Russian ransomware gang has sued the Allentown, Pa.-based health system, The (Allentown) Morning Call reported.

Boston-based Codman Square Health Center’s systems were encrypted by ransomware, causing the protected health information of 10,161 patients to be compromised.

Russian ransomware gang BlackChat has posted more photos of patients from Allentown, Pa.-based Lehigh Valley Health Network to the dark web, The (Allentown) Morning Call reported March 10.

Dorchester, Ma.-based Codman Square Health Center is alerting 10,161 patients of a potential data breach following a ransomware attack that took place between Nov. 23 and Nov. 27.

More than 3 million patients were affected in a data breach involving telemental health company Cerebral, according to a notice to HHS’ Office of Civil Rights.

Hospital and health system boards and executive steering committees are often briefed with  “technobabble,” leaving cybersecurity in the hands of IT security teams, HHS said in a March 8 report.