Privacy & Security

A 3D fiberoptic lock appears over a motherboard.

HC3 warns about AI's cybersecurity impacts

By Andrea Fox 09:45 am July 19, 2023

Threat actors are using artificial intelligence for both designing and executing attacks on hospitals and health systems. HC3 used ChatGPT to show how bad actors leverage generative AI to design spear-phishing emails and malware.

HCA Healthcare sued for recent data breach

By Mike Miliard 11:21 am July 18, 2023

Plaintiffs say the apparent theft of identity and other information announced this past week, which could impact as many as 11 million people, happened because the health system did not use "reasonable security procedures and practices."

Black and white image of two individuals fencing. One is jumping but the opponent finds the weak spot.

Warning: Cybercriminals have more weapons with AI

By Andrea Fox 10:38 am July 18, 2023

Artificial intelligence has changed the threat landscape, enabling new cybersecurity risks for health systems: more sophisticated social engineering, automated vulnerability intelligence gathering, endpoint detection evasion and more.

Image of network showing multiple medical devices or IoT inputs

Healthcare's edge computing priorities have changed

By Andrea Fox 09:15 am July 12, 2023

AT&T's annual industry insights report revealed a shift in focus from consumer virtual care in 2022 to richer budgeting for tele-emergency medical services.

HCA Healthcare says data breach 'appears to be a theft'

By Mike Miliard 10:21 am July 11, 2023

The health system says the patient data, which was posted online, includes names, phone numbers and appointment information, but not clinical or payment info.

Cardiac patient talking to cardiologist on a telehealth call with monitor, medication and a sandwich on the table

CISA warns of Medtronic cardiac device security vulnerability

By Andrea Fox 09:23 am July 05, 2023

Medtronic has released an update for a cybersecurity vulnerability that an unauthorized user could exploit to steal, delete or modify cardiac device data or to gain network access.

Hands on a laptop, and the screen shows code

HC3 warns HCOs to fortify against cybercriminals FIN11 now

By Andrea Fox 11:12 am June 19, 2023

The agency says that FIN11 uses a variety of TTPs and has gained access to more organizations than it is able to monetize, choosing to initiate zero-day exploits based on an organization's location and security posture.

Harvard Pilgrim Healthcare sued for data breach

By Andrea Fox 11:29 am June 14, 2023

An April ransomware attack that compromised the PPI and PHI of some 2.5 million members has led to multiple class action lawsuits against the Massachusetts-based health plan and its parent company.

A cyberattack is partly to blame for St. Margaret's Health closing all operations

By Susan Morse 01:54 pm June 13, 2023

The Illinois Catholic health system has signed a nonbinding letter of intent with OSF Healthcare to acquire the Peru campus.

Young woman wearing a sweatshirt is sitting on her bed and checking a mobile application for information.

CISA, FBI warn health systems and others of Clop MFT ransomware tactics

By Andrea Fox 10:07 am June 13, 2023

They say a vulnerability in MOVEit, a managed file transfer product from Progress Software that provides automated high-volume, HIPAA- and GDPR-compliant transfers, could leave hospitals or healthcare organizations at risk.