healthcare

  • Blog

    US healthcare firm postponed procedures after cyber attack knocked systems offline

    US-based healthcare provider Kettering Health was forced to cancel patient appointments following a cyber attack which caused a company-wide outage. Kettering Health operates 14 medical centers and over 100 outpatient locations across the state of Ohio. In a statement confirming the outage on Tuesday 20th, the non-profit said the attack severely impacted call center operations and a number of patient…

    Read More »
  • Blog

    US healthcare data breaches are out of control – over 400 million patient records have been exposed in the last two years

    Two new reports have highlighted the immense scale of US healthcare data breaches, with 409 million personal records exposed over the last two years. According to research from application security firm Indusface, there were 1,200 breaches in the US healthcare sector in the last 24 months, with 83% of incidents leaving patient records exposed. Texas recorded 66 data breaches, the…

    Read More »
  • Blog

    Healthcare organizations are turning a blind eye to phishing attacks

    The vast majority of phishing attacks against the healthcare sector go unreported to security teams, leaving organizations unable to fully learn from their mistakes. In a survey of 150 US-based healthcare IT leaders for secure email firm Paubox, six-in-ten said they had experienced at least one email security breach last year, and three-quarters that they expected even more security challenges…

    Read More »
  • Blog

    How to Spend Less on Healthcare as You Age

    Each year during open enrollment (Oct. 15 to Dec. 7 for traditional Medicare and Jan. 1 to March 31 for Medicare Advantage plans), take a look at the options for the next year. Make sure that they’re in your price range; your doctors, hospitals, and pharmacies are in-network; and your meds are covered. “Ideally, you want a plan where most—if…

    Read More »
  • Blog

    GenAI is already transforming the healthcare industry – Computerworld

    Early genAI use cases have focused on improving administrative efficiency, dealing with IT gaps, and boosting clinical productivity. As capabilities grow, other uses could expand to patient engagement and quality-of-care improvements. Leaders recognize the importance of AI risk management and governance for safe implementation. Organizations that have developed their genAI capabilities are seeing success with large-scale implementations, b ut future…

    Read More »
  • Blog

    Healthcare systems are rife with exploits — and ransomware gangs have noticed

    Healthcare organizations are facing serious threats from ransomware groups, with nearly nine-in-ten (89%) found to have medical devices that are vulnerable to exploits. That’s according to research from Claroty, which examined the state of security among healthcare organizations — and the diagnosis isn’t good. The report found that effectively all (99%) of healthcare organizations have at least one known, actively…

    Read More »
  • Blog

    Healthcare organizations need to shake up email security practices

    Microsoft 365 is the source of almost half of all healthcare email breaches, thanks mainly to misconfigurations in security settings. According to Paubox’s 2025 Healthcare Email Security Report, email is the main attack vector in the sector, with Microsoft 365 accounting for 43% of all breaches. Proofpoint was next, at 13%, followed by Barracuda Networks and Mimecast at 7%, and…

    Read More »
  • Blog

    More than 300,000 US healthcare patients impacted in suspected Rhysida cyber attacks

    Two US healthcare organizations have warned threat actors were able to breach their internal systems, exposing more than 300,000 individuals. On 7 March 2025, Kansas-based healthcare provider Sunflower Medical Group published an alert stating that over 220,000 patients had their personally identifiable information (PII) accessed in a data breach. An advisory published by the firm revealed it discovered suspicious activity…

    Read More »
  • Blog

    US healthcare org pays $11M settlement over alleged cybersecurity lapses

    Health Net Federal Services (HNFS) and its parent company, Centene Corporation, have agreed to pay $11,253,400 to settle allegations that HNFS falsely certified compliance with cybersecurity requirements under its Defense Health Agency (DHA) TRICARE contract. The U.S. government contracted HNFS to provide managed healthcare support services for TRICARE’s North region, covering 22 states. The contract required compliance with cybersecurity standards,…

    Read More »
  • Blog

    New NailaoLocker ransomware used against EU healthcare orgs

    A previously undocumented ransomware payload named NailaoLocker has been spotted in attacks targeting European healthcare organizations between June and October 2024. The attacks exploited CVE-2024-24919, a Check Point Security Gateway vulnerability, to gain access to targeted networks and deploy the ShadowPad and PlugX malware, two families tightly associated with Chinese state-sponsored threat groups. Orange Cyberdefense CERT links the attacks to Chinese…

    Read More »
Back to top button
close