Healthcare, HIPAA/HITECH, Industry Specific Health Industry Associations Express Concern Over Proposed Cybersecurity Regulations Marianne Kolbasuk McGee (HealthInfoSec) • February 27, 2025 A coalition of healthcare organizations urged the administration to withdraw the proposed HIPAA security rule update in a letter dated February 17 (Image: White House, CHIME, MGMA) A coalition…
Recent cyber activities linked to North Korean threat actors, particularly the Kimsuky group, demonstrate a notable evolution in their techniques. They are increasingly leveraging living-off-the-land (LotL) strategies, relying on common services to remain undetected. A recent operation, identified as “DEEP#DRIVE” by Securonix, exemplifies this trend, utilizing PowerShell scripts and Dropbox…
Artificial Intelligence & Machine Learning, Healthcare, Industry Specific Lawsuit Claims Insurer Misused AI in Denying Necessary Medical Care Marianne Kolbasuk McGee (HealthInfoSec) •February 14, 2025 Image: UnitedHealthCare A proposed class action lawsuit against UnitedHealth Group has gained judicial approval to progress. The case contends that UnitedHealthCare, the company’s insurance division,…
Black Kite, a leader in third-party cyber risk intelligence, has released its sixth annual Third Party Breach Report, offering an in-depth analysis of public data breaches and regulatory findings from the previous year. The report highlights a troubling trend in 2024: a proliferation of “silent breaches” within extensive supply chains.…
Black Kite’s Third Party Breach Report Highlights Evolving Cyber Risks in 2024 In a recent release from Black Kite, a prominent player in third-party cyber risk intelligence, the findings of their sixth annual Third Party Breach Report reveal alarming trends regarding cybersecurity breaches over the past year. The report, which…
In a significant data breach, sensitive information belonging to over one million Americans has been compromised, raising alarms in the cybersecurity community. This incident marks one of the largest healthcare data breaches to date, prompting heightened scrutiny from government officials and industry leaders alike. The breach, which reportedly occurred recently,…
Cyber Attacks Strike Healthcare Sector in Multiple States Recent cyber incidents have targeted healthcare organizations across the United States, compromising sensitive data for over 1.2 million patients. Notable victims include a California hospital system, an Alabama cardiology practice, and a community health network in Colorado. These breaches highlight the escalating…
Massive Data Breach at Community Health Center Affects Over One Million Patients A significant data breach has been reported by the Community Health Center, a healthcare provider based in Connecticut, impacting the personal information of more than one million patients. According to a filing made with the Office of the…
Data Privacy, Data Security, Governance & Risk Management Federal Authorities Alert on Flaws That Could Enable Systematic Exploitation of Patient Monitoring Devices Marianne Kolbasuk McGee (HealthInfoSec) • January 30, 2025 Authorities are raising concerns over vulnerabilities identified in the Contec CMS8000 and Epsimed MN-120 patient monitors. (Image: Epsimed) U.S. federal…
