Black Basta Cyberattack on Ascension Health Raises Concerns Over Healthcare Security In a significant cyber incident, the Black Basta ransomware group targeted Ascension Health, one of the largest Catholic healthcare providers in the United States, leading to widespread disruption in operations. The attack, which occurred in May 2024, resulted in…
Healthcare, HIPAA/HITECH, Industry Specific Health Industry Associations Express Concern Over Proposed Cybersecurity Regulations Marianne Kolbasuk McGee (HealthInfoSec) • February 27, 2025 A coalition of healthcare organizations urged the administration to withdraw the proposed HIPAA security rule update in a letter dated February 17 (Image: White House, CHIME, MGMA) A coalition…
Established in 1996, the Health Insurance Portability and Accountability Act (HIPAA) has served as the benchmark for U.S. healthcare providers, health organizations, and entities handling health data to safeguard the privacy and security of electronic public health information (ePHI). It also stipulates penalties for non-compliance. In January 2025, the U.S.…
Data Breach Notification, Data Privacy, Data Security Ransomware Attack Reveals Critical Vulnerabilities in Healthcare Resilience and Vendor Dependency Marianne Kolbasuk McGee (HealthInfoSec) • February 21, 2025 The February 2024 ransomware attack on Change Healthcare disrupted operations for numerous healthcare providers and affected sensitive health data of 190 million individuals. (Image:…
Kroll’s Cyber Risk team has unveiled its 2025 Data Breach Outlook, indicating a dramatic shift in the landscape of cybersecurity threats. The healthcare sector emerged as the most targeted industry in 2024, accounting for a concerning 23% of all reported data breaches. This statistic reveals a notable increase from previous…
Title: Data Breach at IVF Provider Genea Raises Concerns Over Patient Security In a troubling cybersecurity incident, Genea, a leading in vitro fertilization (IVF) clinic in Australia, has confirmed unauthorized access to its data, raising alarm among its patients. The breach, characterized by the company as a “cyber incident,” is…
Cybersecurity Breaches in Healthcare: A Year of Alarming Data Compromises In February 2024, Change Healthcare publicly disclosed a significant cybersecurity breach, marking it as the largest healthcare data breach reported to federal regulators. Initially, the extent of this breach was not fully recognized, but it soon became clear that the…
Black Kite, a leader in third-party cyber risk intelligence, has released its sixth annual Third Party Breach Report, offering an in-depth analysis of public data breaches and regulatory findings from the previous year. The report highlights a troubling trend in 2024: a proliferation of “silent breaches” within extensive supply chains.…
Black Kite’s Third Party Breach Report Highlights Evolving Cyber Risks in 2024 In a recent release from Black Kite, a prominent player in third-party cyber risk intelligence, the findings of their sixth annual Third Party Breach Report reveal alarming trends regarding cybersecurity breaches over the past year. The report, which…
