Potential Backdoor Embedded in Contec Health CMS8000 Patient Monitor Firmware

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has published a medical product advisory for the Contec Health CMS8000 Patient Monitor to address one critical and two high severity vulnerabilities. The Contec CMS8000 is a patient monitor used to display Read More …

Australia’s biggest medical imaging provider I-MED data breach exposes tens of thousands of patient files

Tens of thousands of patients from Australia’s biggest medical imaging provider I-MED have had swaths of sensitive health and personal information exposed in a data breach using details that have been public for a year. This information includes medical reports, Read More …

Thousands of US medical professionals have data exposed in major data breach

Researchers have found a database backup belonging to Florida-based recruitment company MNA Healthcare left unsecured online, leaving the details of thousands of workers open to anyone. The company offers staffing services for healthcare workers and matches them with hospitals and Read More …

Nearly 1M Medicare beneficiaries potentially affected after data breach

Nearly 1 million Medicare beneficiaries are being warned that their personal information may have been compromised in a cybersecurity incident last year. The Centers for Medicare & Medicaid Services (CMS) and Wisconsin Physicians Service Insurance Corporation (WPS), the contractor that Read More …

CardioComm, a provider of ECG monitoring devices, confirms cyberattack downed its services

CardioComm Solutions, a Canadian provider of consumer and professional-grade heart monitoring technologies, has been downed by an ongoing cybersecurity incident. The Toronto-based organization said on Tuesday that its business operations will be “impacted for several days and potentially longer” following Read More …

Ortivus’ electronic patient record system are down for some United Kingdom based customers due to a cyber-attack

On the evening of 18 July Ortivus’ systems were subject to a cyber-attack affecting UK customer systems within our hosted datacenter environment. The electronic patient records are currently unavailable and are until further notice handled using manual systems. No patients Read More …

UK: Hacking gang BlackCat says it stole data trove from the Barts Health NHS Trust

A gang of cybercriminals says it has breached one of the UK’s largest hospital groups and is threatening to publish a trove of its confidential data. The gang, known as ALPHV or BlackCat, posted a statement on Friday claiming it Read More …

CISA Releases One Industrial Control Systems Medical Advisory

CISA released one Industrial Control Systems Medical (ICS) medical advisory on April 27, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS medical Read More …

Hydrochasma: Previously unknown group targets medical and shipping organizations in Asia

Shipping companies and medical laboratories in Asia are being targeted in a likely intelligence-gathering campaign that relies exclusively on publicly available and living-off-the-land tools. Hydrochasma, the threat actor behind this campaign, has not been linked to any previously identified group, Read More …

HHS: Ransomware groups continue to target U.S. health sector

The Royal and Blackcat ransomware groups continue to aggressively target the U.S. health sector, according to a recent advisory from the Department of Health and Human Services. Just this week, the Washington Post described an apparent recent attack by Blackcat Read More …