• Hackers threaten to release ‘huge volume’ of stolen NHS Scotland data

    March 27, 2024

    A cybercrime group has claimed it will release a large volume of NHS Scotland data stolen during a sustained hacking attack. INC Ransom, an extortion operation, has posted a message on its dark web blog, threatening to release three terabytes – which equates to 3,000 gigabytes – of stolen health service patient and staff data. NHS ...

  • British authorities investigating the Princess of Wales medical records breach

    March 20, 2024

    British authorities said Wednesday they are investigating a possible breach of the medical records of Catherine, Princess of Wales. The Information Commissioners Office said the inquiries follow a “breach report” it had received. “We can confirm that we have received a breach report and are assessing the information provided,” it said. Read more… Source: Yahoo News  

  • Mandatory cyber requirements after Change Healthcare attack opposed by health sector

    March 18, 2024

    The American Hospital Association has opposed mandatory cybersecurity requirements proposed for the healthcare sector following the ransomware attack against Change Healthcare, which has resulted in widespread prescription processing outages across the U.S. “Imposing fines or cutting Medicare payments would diminish hospital resources needed to combat cybercrime and would be counterproductive to our shared goal of preventing ...

  • UK: NHS Dumfries and Galloway hit by cyber attack with ‘significant quantity’ of data at risk

    March 15, 2024

    NHS Dumfries and Galloway has been hit by a cyber attack, with the health board saying a “significant quantity” of data has been put at risk and services could potentially be disrupted. In a statement posted to its website on Friday, the board said the attack was “focused and ongoing” and the files accessed could include ...

  • Ransomware’s appetite for US healthcare sees known attacks double in a year

    March 15, 2024

    Following the February 21 attack on Change Healthcare, scores of people in the US have been living with the brutal, real-world effects of ransomware. Described by the American Hospital Association (AHA) President and CEO Rick Pollack as “the most significant and consequential incident of its kind against the US health care system in history,” the attack ...

  • A bug in an Irish government website exposed COVID-19 vaccination records

    March 14, 2024

    Two years ago, the Irish government fixed a vulnerability in its national COVID-19 vaccination portal that exposed the vaccination records of around a million residents. But details of the vulnerability weren’t revealed until this week after attempts to coordinate public disclosure with the government agency stalled and ended. Security researcher Aaron Costello said he discovered the ...

  • US health department opens probe into UnitedHealth hack

    March 13, 2024

    The U.S. government on Wednesday said it has opened an investigation into the cyberattack at UnitedHealth Group’s Change Healthcare to find out whether there was a breach of protected health data and if the company followed U.S. health privacy law. It is the first announcement of a probe by the Department Of Health and Human Services ...

  • Capita shares sink as outsourcing giant swings to £107m loss, takes £25m hit from cyber attack

    March 6, 2024

    Capita has incurred £25.3m in costs tied to a cyber attack last March as the outsourcing giant swung to an annual loss and ramped up its cost-cutting programme. Shares fell 16 per cent on Wednesday morning. The group, which runs key local government, military and NHS services, posted a pretax loss of £106.6m for 2023, compared ...

  • Hacker forum post claims UnitedHealth paid $22 mln ransom in bid to recover data

    March 5, 2024

    A post on a hacker forum popular with cybercriminals has claimed UnitedHealth Group opens new tab paid $22 million in a bid to recover access to data and systems encrypted by the “Blackcat” ransomware gang, according to two researchers. Neither UnitedHealth nor the hackers involved have commented on the alleged ransom payment, but a cryptocurrency tracing ...

  • US prescription market hamstrung for 9 days (so far) by ransomware attack

    March 1, 2024

    Nine days after a Russian-speaking ransomware syndicate took down the biggest US health care payment processor, pharmacies, health care providers, and patients were still scrambling to fill prescriptions for medicines, many of which are lifesaving. On Thursday, UnitedHealth Group accused a notorious ransomware gang known both as AlphV and Black Cat of hacking its subsidiary, Optum. ...

  • #StopRansomware: Phobos Ransomware

    February 29, 2024

    The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) are releasing this joint CSA, to disseminate known TTPs and IOCs associated with the Phobos ransomware variants observed as recently as February 2024, according to open source reporting. Phobos is structured as a ransomware-as-a-service ...

  • Cyber attack affects numerous services at most Nebraska state hospital

    February 29, 2024

    The Nebraska Hospital Association said most state hospitals were affected by a cyber attack. The NHA said Change Health Care was hit with the attack on Feb. 21. The technology company assists with things like prior authorizations, insurance verification and patient billing. All of those services are affected. Read more… Source: MSN News  

  • Pharma giant Cencora hit by major cyberattack

    February 28, 2024

    Cencora has confirmed suffering a data breach earlier this month which resulted in the theft of sensitive, personal data. Cencora is a drug wholesale company and a contract research firm that was previously known as Amerisource Bergen. It was formed in 2001, after the merger of Bergen Brunswig and AmeriSource. Read more… Source: MSN News  

  • Ransomware Attack Disrupts Over 100 Romanian Hospitals, Including Cancer and Pediatric Centers

    February 19, 2024

    A massive ransomware attack has disrupted operations in multiple Romanian hospitals after encrypting databases and files. It targeted the Hipocrate Information System (HIS), an integrated healthcare management system sold by Romanian Soft Company (RSC). A significant portion of the Romanian healthcare system, including pediatric and oncology centers, was impacted, forcing staff to resort to manual systems ...

  • Why are ransomware gangs making so much money?

    February 17, 2024

    For many organizations and startups, 2023 was a rough year financially, with companies struggling to raise money and others making cuts to survive. Ransomware and extortion gangs, on the other hand, had a record-breaking year in earnings, if recent reports are anything to go by. It’s hardly surprising when you look at the state of the ...

  • State of Emergency: How Minnesota hospitals, state officials prepare for cyber attacks

    February 13, 2024

    The State of Minnesota stores and protects data on some six million residents, and that’s only one cache of sensitive information under the close watch of Minnesota IT Services (MNIT). “It’s everything from highways and highway traffic control systems, we run the zoo. We run everything in between,” John Israel, chief information security officer at MNIT, ...

  • Data of 33 million people in France stolen in its largest ever cyberattack

    February 8, 2024

    Over 33 million people in France – nearly half of its population – have been impacted by the country’s biggest-ever cyberattack. Two French service providers for medical insurance companies were targetted, with the companies admitting that millions of people’s data were exposed to the hackers. Read more… Source: MSN News  

  • Series of cyber attacks risks sensitive data at New Jersey schools, hospitals

    January 30, 2024

    Class was canceled Monday across the Freehold Township school district, but not for the familiar January troubles of slushy roads, frozen pipes or a busted boiler. No, this was “a cybersecurity event” that ground school business to a halt. District officials disclosed little about what happened, assuring parents in an email they “retained outside IT expert consultants ...

  • Threat Assessment: BianLian ransomware group

    January 23, 2024

    Unit 42 researchers have been tracking the BianLian ransomware group, which has been in the top 10 of the most active groups based on leak site data they’ve gathered. From that leak site data, Unit 42 primarily observed activity affecting the healthcare and manufacturing sectors and industries, and impacting organizations mainly in the United States (US) ...

  • Medical data breach could impact thousands from New Hampshire

    January 15, 2024

    A Massachusetts-based medical company is contacting over 900,000 people whose personal information may have been compromised in a data breach. In a letter to the New Hampshire attorney general’s office, Transformative Healthcare said the breach happened last year when someone gained access to an archived copy of data that previously belonged to Fallon Ambulance Service. Read more… Source: MSN ...