Government, Healthcare, Industry Specific Also: Akira Ransomware Targets Healthcare, AI’s Sycophancy Becomes a Security Risk Anna Delaney (annamadeline) • November 21, 2025 Clockwise, from top left: Anna Delaney, Tony Morbin, Chris Riotta, and Marianne Kolbasuk McGee This week’s ISMG Editors’ Panel convened a discussion among four seasoned editors, who addressed…
Data Privacy, Data Security, Healthcare Sensitive Data of Nearly 470,000 Patients and Employees Potentially Exposed on Dark Web Marianne Kolbasuk McGee (HealthInfoSec) • November 18, 2025 Omni Family Health, a nonprofit operating approximately 40 community health centers in California, has reached a $6.5 million settlement over a 2024 cyber incident…
Artificial Intelligence & Machine Learning, Healthcare, Industry Specific Guidance Documents Highlight 5 Key Risk Areas and Best Practices for AI in Healthcare Marianne Kolbasuk McGee (HealthInfoSec) • November 12, 2025 The Health Sector Coordinating Council has previewed upcoming materials aimed at helping the healthcare sector address the cyber risks associated…
Data Breach Notification, Data Security, Fraud Management & Cybercrime Ransomware Attack on British Pathology Lab Disrupted Patient Care for Months Marianne Kolbasuk McGee (HealthInfoSec) • November 11, 2025 Synnovis has begun notifying UK healthcare providers about potential patient data breaches stemming from the lab’s 2024 ransomware attack. (Image: Synnovis) Following…
Data Privacy, Data Security, Healthcare State Authorities Highlight Security Lapses Leading to Illuminate Education’s Late 2021 Data Breach Marianne Kolbasuk McGee (HealthInfoSec) • November 10, 2025 Illuminate Education faces a $5.1 million settlement after a cyberattack in late 2021 that compromised data of over 3 million students. (Image: Illuminate) A…
A financially motivated threat group, identified as FIN12, has been linked to a series of RYUK ransomware incidents since October 2018. This organization demonstrates significant collaboration with TrickBot-affiliated actors while utilizing publicly accessible tools like Cobalt Strike Beacon payloads to penetrate victim networks. Cybersecurity firm Mandiant has attributed these security…
Data Privacy, Data Security, Healthcare March Breach Affected Nearly 5.6 Million; NextGen Proposed Settlement Also Reached Marianne Kolbasuk McGee (HealthInfoSec) • October 24, 2025 Yale New Haven Health System, Connecticut’s largest healthcare network, has agreed to pay $18 million to settle class action litigation stemming from a March breach impacting…
Recent analyses indicate a troubling rise in cyber intrusions, fueled by the proliferation of criminal tools and insufficient defenses. A recent episode of The Indicator from Planet Money delves into how data breaches are accelerating, the decreasing costs of entry for attackers, and the implications this holds for patients, consumers,…
Introduction In an age where digital connectivity is paramount, Application Programming Interfaces (APIs) have emerged as crucial facilitators for communication and data exchange among software applications. Acting as bridges, APIs enable various systems to share information seamlessly. However, with the rising adoption of APIs comes an increased risk, as they…
