Editor's Note According to a September 14 FBI report, cyber criminals are increasingly targeting healthcare payment processors to redirect payments intended for healthcare providers to accounts they control, the American Hospital Association (AHA) September 16 reports. At least 68 attacks have occurred since June 2018, in which unknown cyber criminals…

Read More

Editor's Note The FBI on August 22 warned healthcare workers of ongoing fraud schemes where scammers impersonate law enforcement and government officials in an effort to extort money or steal personally identifiable information (PII), Healthcare Purchasing News August 24 reports. By researching a medical practice’s website or social media, scammers…

Read More

Editor's Note The US Department of Health and Human Services (HSS) Health Sector Cybersecurity Coordination Center (HC3) released a new brief offering tips on how to protect healthcare organizations from basic web application attacks, the American Hospital Association (AHA) July 26 reports. These attacks target patient portals and expose patient…

Read More

Editor's Note The Joint Commission on July 13 announced via its blog Dateline @ TJC that it has partnered with the Cybersecurity & Infrastructure Security Agency (CISA) to compile and make available several CISA educational resources and tools on cybersecurity at no cost to healthcare providers. These include: A template…

Read More

Editor's Note The FBI, Cybersecurity and Infrastructure Security Agency, and Treasury Department on July 6 issued a joint cybersecurity advisory warning of ransomware threats against the US healthcare and public sectors from hackers sponsored by North Korea, Becker’s Health IT July 6 reports. The FBI explained the threat comes from…

Read More

Editor's Note More than 600 healthcare organizations, including hospitals, practices, and other health facilities, have been affected by a data breach on an accounts receivable management company called Professional Finance Company's network, Becker’s Health IT July 5 reports. The ransomware attack on Professional Finance Company, which provides services to healthcare…

Read More

Editor's Note On Friday, June 24, the American Hospital Association (AHA) voiced support for the Protecting and Transforming Cyber Health Care Act (PATCH Act)—legislation that would “require medical device manufacturers to meet certain cybersecurity requirements when seeking approval for devices that are internet connected or include software” in order to…

Read More

Editor's Note According to an “electronic health information” release by the US Government Accountability Office (GAO), titled “HHS Needs to Improve Communications for Breach Reporting” and published on May 27, the Department of Health and Human Services (HHS) has seen an increase in reported breaches of health information since 2015,…

Read More

Editor's Note On June 16, the US Department of Health and Human Services (HSS) Health Sector Cybersecurity Coordination Center published a guidance, titled “Strengthening Cyber Posture in the Health Sector, to help health systems and other healthcare organizations “improve their overall strength, protocols, and prevention abilities for cyberattacks,” Becker’s Health…

Read More

Editor's Note According to a report from cybersecurity firm Sophos, titled “The State of Ransomware in Healthcare 2022” and published in May 2022, ransomware attacks on healthcare organizations have increased by 94% “year over year” globally, Becker’s Health IT June 6 reports. The report includes findings from an “independent, vendor-agnostic…

Read More