- The federal Deputy Director of Cybersecurity & Infrastructure Security Agency, Nitin Natarajan, stated:
- “In the past, when it came to warfare, healthcare was always protected. You never bombed the tent that had the Red Cross on it. You never impacted healthcare because it was protected, neutral space.”
- Healthcare entities of all types and sizes are targets of major cybersecurity attacks
- “We must increase that awareness”
- The federal Department of Justice announced that Denis Dubnikov of Russia was arrested in the Netherlands, extradited to the U.S., and convicted for participation in the Ryuk ransomware hacker group
- Southwest Healthcare Services Hospital of Bowman, North Dakota notified 15,996 patients that their PHI was exposed after cyber attack.
- NCC Group published ransomware report that shows:
- Ransomware attacks in healthcare up 62%
- Average cost of breach is $9.23 million in healthcare
- 30% of operating income could be consumed by attack.
- Salesforce.com survey shows that 20% of healthcare organizations do NOT enforce cybersecurity protocols.
- Pineland School District of Vineland, New Jersey notified an unknown number of students that their info was exposed after FERPA breach via ransomware attack.
- Uniondale Union Free School District of New York notified an unknown number of students that their info was exposed after FERPA breach via ransomware attack.
- Lamoile Health Partners of Vermont was sued for alleged negligence regarding breach that exposed PHI of 60,000 patients.
- Southeastern University of Louisiana notified an unknown number of students after FERPA breach exposed their info.
- Stroud Area Regional Police Department of Pennsylvania notified an unknown number of citizens that their info was exposed after cyber attack.
- Yum! Brands Inc. (KFC, Pizza Hut, Taco Bell, The Habit Burger) notified an unknown number of customers that their info may have been exposed after breach.
- NCR, a large payment provider in the U.S., notified an unknown number of customers that their info may have been exposed after breach.
- Conifer Health, and its parent, Tenet Healthcare, headquartered in Dallas, TX, were sued for alleged negligence regarding a breach that exposed the PHI of an unknown number of patients.
- Excela Health of Pennsylvania hit by $4M lawsuit alleging negligence regarding sharing PHI with Facebook and Google.
- Crown Point Community School District of Indiana notified an unknown number of students had their info exposed after FERPA cybersecurity breach.
- Tucson School Districts of Arizona notified an unknown number of students had their info exposed after FERPA cybersecurity breach.
- Tufts Health Plan and Harvard Pilgrim Health Care of Massachusetts notified an unknown number of patients that their PHI may have been exposed after ransomware attack.
- Digital Shadows Photon Research reports that black market sites on the Dark Web offer:
- 25 billion email addresses, phone numbers and credit card numbers
Original Post