Editor's Note One cyberattack can unravel years of work and financial stability for a surgical practice. That’s the central warning in an April 9 commentary by Lenworth M. Jacobs Jr., MD, MPH, FACS, professor of surgery at the University of Connecticut and director of the Trauma Institute at Hartford Hospital.…
Editor's Note Healthcare organizations are improving their ability to respond to cyberattacks but continue to fall short on preventing them—particularly when it comes to managing third-party and asset-related risks. That’s the key takeaway from the 2025 Healthcare Cybersecurity Benchmarking Study conducted by KLAS Research and partner organizations. Surveying 69 healthcare…
Editor's Note Cybercriminals breached a legacy server at Oracle Health, stealing patient data from multiple hospitals and health systems, according to a March 31 article in Healthcare Executive. The breach, discovered around February 20, occurred before Oracle migrated the affected server from Cerner's system to Oracle Cloud. According to the…
Editor's Note Between 2018 and 2024, ransomware attacks on US healthcare organizations compromised nearly 89 million patient records and resulted in downtime costing an estimated total of $21.9 billion, according to a December 18 report from Comparitech. The report tallies 654 total ransomware incidents during this period targeting hospitals, clinics,…
Editor's Note "Why is healthcare cybersecurity so bad?" This is the central question explored in a December 4 video from STAT health tech reporter Brittany Trang, who also wrote an article on the subject earlier this year. Brought into sharp focus by data exposures related to the recent attack on…
Editor's Note Hospitals’ financial outlook is stable, although growth is slowing and certain costs are projected to increase, particularly for cybersecurity, according to two recent Becker’s reports on data from Moody’s Investor Services. The first, published November 14 in Becker’s Hospital CFO Report, notes that “hospitals are facing a stable…
Editor's Note A November 13 report from The Government Accountability Office (GAO) identifies critical gaps in the Department of Health and Human Services' (HHS) ability to manage cybersecurity risks in the healthcare and public health sector. HHS, the lead federal agency for cybersecurity in this sector, faces challenges in monitoring…
Editor's Note Cybersecurity threats in healthcare are increasingly driven by third-party vendors, affecting millions of patients and hospital systems globally, experts John Riggi and Richard Staynings emphasized at the HIMSS Healthcare Cybersecurity Forum. Healthcare Finance News reported on the experts’ testimony November 5. According to the article, cyberattacks have surged…
Editor's Note The story of how the perioperative team at Ann & Robert H. Lurie Children's Hospital responded to a recent cyber event revealed insights about resilience, communication, team-building, and preparedness in one of the concluding sessions of this week’s OR Manager Conference in Las Vegas. The session was presented…
Editor's Note Iranian cyber actors employing techniques such as brute force, password spraying, and multifactor authentication (MFA) "push bombing" to compromise healthcare and other critical infrastructure sectors, the American Hospital Association (AHA) reported October 17. The report cites an October 16 joint advisory issued on October 16 by the FBI,…