Editor's Note Hospitals and health systems have largely returned to normal operations in the wake of a global IT outage caused by a faulty update from cybersecurity company CrowdStrike, according to a July 29 article in Becker’s Health IT. The outage, which began July 18, resulted in many health systems'…
Editor's Note The FBI has infiltrated the ransomware group BlackCat—the group responsible for a February cyberattack on the Lehigh Valley Health Network—and issued a decryption tool enabling victims around the world to restore their systems, according to a December 19 Justice Department press release. Emerging during the past 18…
Editor's Note The US Food and Drug Administration (FDA) has recognized the latest guidance on medical device cybersecurity from the Association for the Advancement of Medical Instrumentation (AAMI), an AAMI November 14 press release reports. This latest cybersecurity recognition is encouraging its use across the medical device manufacturing industry to…
Editor's Note The American Hospital Association (AHA) November 6 is alerting healthcare institutions to a new ransomware known as BlackSuit, which is likely to pose a serious threat to the healthcare and public health sectors. According to AHA: BlackSuit is very similar to the Royal ransomware family, which followed the…
Editor's Note The Cybersecurity and Infrastructure Security Agency (CISA) and the Department of Health and Human Services (HHS) on October 26 announced a new cybersecurity-focused toolkit with resources for healthcare organizations and the public health sector. The two agencies have been working with the Health Sector Coordinating Council (HSCC) Cybersecurity…
Editor's Note Cisco has released an update that fixes a critical vulnerability in their Emergency Responder communications platform, a system used throughout the health sector, an October 6 HC3: Sector Alert from the Department of Health and Human Services (HHS) Office of Information Security reports. The HHS recommends that healthcare systems…
Editor's Note A new report from cybersecurity provider Critical Insight notes that data breaches are continuing to pose major problems for healthcare systems, an August 2023 Business Wire press release reports. Already more than 40 million patients' medical information was reportedly involved in data breaches in 2023. Following are key…
Editor's Note The United States, in coordination with the United Kingdom, has imposed sanctions on 11 individuals linked to the Russia-based cybercrime group known as Trickbot, a US Department of the Treasury September 7 press release reports. These sanctions were issued by the US Department of the Treasury's Office of…
Editor's Note On August 4, the Department of Health and Human Services Health Sector Cybersecurity Coordination Center released a security alert warning hospitals of a new ransomware group called Rhysida that has been active since May 2023 and is recently targeting healthcare by breaching networks and demanding a ransom. According…
Editor's Note On June 29, the Cybersecurity & Infrastructure Security Agency (CISA) issued a medical advisory alert "warning of a significant, high-risk vulnerability in Medtronic’s Paceart Optima System, which is used to compile and manage patients’ cardiac device data," the American Hospital Association (AHA) July 6 reports. According to CISA,…