Category: cybersecurity

Michigan surgery center notifies 15K patients of data breach

Macomb County, Mich.-based Northeast Surgical Group notified 15,298 patients that some of their protected health information was compromised in a data breach. 

Physician inappropriately viewed patient files for 9 years, Oregon health system says

A physician has inappropriately accessed patient medical records from Grants Pass, Ore.-based Asante from 2014 to 2023. 

New York medical center switches EHR vendors after third-party data breach

Jamestown, N.Y.-based The Chautauqua Center is notifying patients that some of their protected health information was compromised when its medical records provider WebPT experienced a data breach, WRFA reported March 6.  

Ransomware gang posts breast cancer patient photos from Pennsylvania health network to dark web

BlackCat ransomware gang posted screenshots of patient diagnoses and pictures of breast cancer patients undressed from the waist up from Allentown, Pa.-based Lehigh Valley Health Network, BankInfoSecurity reported March 6. 

Virginia hospital notifies patients of data breach

Richmond, Va.-based Henrico Doctors’ Hospital is notifying 990 patients that some of their protected health information was compromised in a data breach. 

Georgia health system's operations disrupted by cyberattack

A cyberattack disrupted Warner Robins, Ga.-based Houston Healthcare’s operations; the health system was able to remain open and care for patients using its backup processes and downtime procedures.

3 ways to prevent attacks from ransomware gang Royal, according to FBI, CISA

Royal is one of the major ransomware gangs targeting healthcare, and the FBI and Cybersecurity and Infrastructure Security Agency gave tips for averting its attacks.

LCMC Health deploys AWS ransomware recovery tool for Epic EHR

New Orleans-based LCMC Health partnered with IT company Sapphire Health to use Amazon Web Services to deploy a ransomware recovery tool to the health system’s Epic EHR. 

Kentucky hospital to spend $2.5M on cybersecurity upgrade

Russell Springs, Ky.-based Russell County Hospital’s board approved $2.5 million in funding for a cybersecurity upgrade, WJRS News reported March 1. 

MedusaLocker ransomware gang targeting US healthcare, HHS warns

Russian-based MedusaLocker ransomware group is upping its tactics and the HHS is warning healthcare organizations to “holistically require” multiple levels of access and authentication controls to defend against this group.