Parkview Medical Center located in Pueblo, Colorado is recouping from a ransomware attack which began on April 21, 2020. Several IT systems were deactivated because of the attack. The Meditech electronic medical record system of […]
The World Health Organization (WHO) is a well-known organization that is fighting COVID-19. Cybercriminals and hacktivists have escalated attacks on WHO as it addresses the COVID-19 pandemic. WHO receives five times more attacks now as […]
The American Hospital Association (AHA) and the American Medical Association (AMA) have made a joint cybersecurity guidance for work at home doctors during the COVID-19 outbreak so that they would be guided in keeping their […]
A Federal judge gave the final approval of the proposed settlement by Banner Health for a class-action lawsuit filed over its 3.7 million-record data breach last 2016. The proposed settlement having an amount of $8.9 […]
The HHS’ Office of Inspector General (OIG) recommended a rule last Tuesday that make changes to civil monetary penalty guidelines to also cover information blocking. If implemented, the new CMPs for information blocking will be […]
The FBI has given a new alert after a surge in COVID-19 phishing scams directed at healthcare companies. In the advisory, the FBI clarifies that on March 18, 2020 network perimeter cybersecurity programs utilized by […]
The Department of Homeland Security’s Cybersecurity Infrastructure Security Agency (CISA) gave an advisory to all companies that use Pulse Secure VPN servers regarding the likelihood of not preventing cyberattacks even after patching vulnerabilities. CISA is […]
A phishing attack on Aurora Medical Center-Bay Area in Marinette, WI on January 1, 2020 resulted in the exposure of some protected health information (PHI) of 27,137 patients. A number of Aurora Medical Center employees […]
Beaumont Health, Michigan’s biggest healthcare system, announced the potential compromise of patient data located in email messages and file attachments because unauthorized persons gained access to some employees’ email accounts. Beaumont Health discovered the email […]
On April 15, 2020, Microsoft issued updates to resolve 113 vulnerabilities that affected its operating systems and software products, including 19 critical vulnerabilities. The updates this month consist of fixes for no less than 3 […]
Microsoft introduced a patch to address a critical vulnerability impacting Microsoft Exchange Servers which threat actors could potently exploit to have complete command of a vulnerable system. In spite of the warning of Microsoft that […]
The HHS has released a Notice of Enforcement Discretion that is applicable to healthcare organizations and business associates that get involved in the operations of COVID-19 community-based testing areas. According to the terms of the […]
The McHenry County Health Department in Illinois were not providing 911 dispatchers with the names of COVID-19 patients to safeguard patient privacy, just as what they do with patients that caught other infectious diseases like […]
A ransomware attack on Brandywine Urology Consultants based in Delaware on January 25, 2020 resulted in the encryption of files stored on its servers and computer systems. The scope of the attack was limited and […]
Hawaii Pacific Health learned about the 5-year snooping of an employee of Straub Medical Center (Honolulu) on patient healthcare records. Hawaii Pacific Health discovered on January 17, 2020 the unauthorized patient records access and began […]
The Federal Bureau of Investigation gave a warning after an uprise in Business Email Compromise (BEC) attacks that are making the most of the chaos associated with the COVID-19 pandemic. The term BEC refers to […]
The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) presented further guidelines on HIPAA and COVID-19. The new guidance presents cases when covered entities permit disclosures of protected health information (PHI) […]
A new Proofpoint report states that cybercriminals are now mostly only doing campaigns that are related to the 2019 Novel Coronavirus. 80% of all threats found by the Proofpoint are related to coronavirus. The latest […]
Although most social engineering and phishing attacks come about through email, social engineering strategies are likewise employed to persuade people to disclose sensitive data through other channels of communication, such as the telephone. There is […]
Improper Disposal Incident Reported by the Georgia Department of Human Services The Georgia Department of Human Services reported that employees in Augusta, GA had improperly disposed of confidential case files stored in boxes. The case […]
LifeSprk, a provider of senior care based in Minnesota, is mailing notification letters to 9,000 of its clients about the potential exposure of their protected health information (PHI) as a consequence of a phishing attack […]
CalHIPAA is a registered trademark. © Copyright 2003 to 2024 calHIPAA. All rights reserved.