The federal government urged organizations to prioritize remediate known vulnerabilities, segment networks, and enable multifactor authentication to lower the risk of Rhysida ransomware. -

Zero-day attacks pose significant dangers to the healthcare sector, but defenders can mitigate risk by patching early and often. -

Join millions who have switched to Grok.

The Health Industry Cybersecurity Practices (HICP) publication can be a key asset to improving cybersecurity within healthcare organizations of all sizes. -

While security budget growth continues on an upward trend, new research shows that healthcare and other sectors are increasing their budgets by a smaller amount this year compared to last year. -

As new state-level data privacy laws go into effect, digital health companies will have to navigate unforeseen compliance complexities. -

A skilled nursing facility in Colorado will pay a fine and take corrective actions for allegedly failing to protect patient and employee data during a 2021 data breach. -

Abnormal Security observed a 167% increase in advanced email attacks in 2023, including business email compromise (BEC), phishing, malware, and extortion. -

Nuance Communications notified more than 1.2 million individuals of a breach stemming from the MOVEit vulnerability. -

HC3 shed light on the tactics of North Korean and Chinese cyber threat actors that pose a risk to the healthcare sector, such as APT43 and APT41. -

According to the lawsuit, IU Health failed to protect patient privacy and committed HIPAA violations after a 10-year-old rape victim’s abortion story was leaked to the press. -

At the HIMSS Healthcare Cybersecurity Forum, HHS representatives discussed healthcare cybersecurity focus areas for the next 12 to 24 months. -

The largest publicly operated health plan in the US paid $1.3 million to conclude two OCR HIPAA violation investigations stemming from data breaches. -

The DOJ charged multiple Russian cybercriminals over their involvement in Trickbot malware and Conti ransomware operations, including the Conti attack on Scripps Health. -

Top risks to healthcare cybersecurity include notorious ransomware groups, unpatched vulnerabilities, and the sector’s reliance on technology. -

The healthcare accreditation organization urged healthcare organizations to form a downtime planning committee and take other actions to prioritize patient safety after a cyberattack. -

Along with international partners, the FBI disrupted Qakbot malware and seized more than $8.6 million in cryptocurrency. -

The MOVEit hack and other third-party data breaches continue to impact healthcare entities across the country, this week’s data breach roundup shows. -

UnitedHealthcare paid an $80,000 settlement to HHS, marking the 45th case settled under OCR’s Right of Access Initiative. -

Despite an overall decrease in healthcare data breach volume in the first half of the year, the number of records compromised increased by 31% compared to the second half of 2022. -

Advocate Aurora Health suffered a data breach last year that impacted 3 million individuals, stemming from its use of tracking pixels. -