Tag: healthcare
356 articles

Phishing Campaign Targets 35,000 Users in 2 Days
In just 48 hours, a massive phishing campaign hit over 35,000 users across 13,000 organizations in 26 countries, with nearly 1 in 5 targets in the healthcare and life sciences sector. The alarming attack highlights the speed and scale of modern phishing operations.

Karakurt Ransomware Operative Sentenced for Extortion Role
Meet Deniss Zolotarjovs, a Latvian national who helped his ransomware gang extort dozens of companies - and even a government entity with a crippled 911 system - by leveraging stolen sensitive data, including children's health information. He's now facing 8.5 years in prison for his role in the Karakurt extortion operation.

NHS Moves to Close-Source GitHub Repos Citing AI Security Risks
The NHS is taking steps to boost security by moving its public GitHub repositories to private access by May 11, amid concerns that AI-powered code analysis could be exploited to uncover sensitive information. This temporary measure aims to prevent unintended disclosure of source code and other critical details.

Microsoft Exposes Large-Scale Phishing Campaign Targeting 35,000 Users Worldwide
A massive phishing campaign targeting over 35,000 users worldwide has been uncovered, using sophisticated email templates that convincingly masquerade as legitimate internal communications. The highly convincing lures successfully hit organizations across 26 countries, with a staggering 92% of targets based in the US.

Pharmacist Indicted for Spying on Co-Workers with Cyber Tools
A pharmacist in Maryland has been indicted for allegedly spying on nearly 200 coworkers and individuals over eight years using cyber tools, breaching trust and violating digital boundaries. Matthew Bathula faces federal charges for unauthorized computer access and aggravated identity theft.

New York Fines Delta Dental $2.25M for MOVEit Hack Violations
Delta Dental of New York has been fined $2.25 million by the New York Department of Financial Services for its handling of a massive data breach involving hackers stealing around 60,000 files from its MOVEit servers in 2023. The hefty penalty highlights the importance of robust cybersecurity measures to protect sensitive information.

Ransomware Breach Exposes Sensitive Data at Sandhills Medical Foundation
Sandhills Medical Foundation suffered a devastating ransomware attack on May 8, 2025, putting sensitive data at risk. It took nearly 11 months for affected individuals to be notified in April 2026, sparking an investigation into the breach.

Ransomware Defenses Hold, But New AI Threats Emerge
While ransomware defenses have shown significant improvement, experts warn that complacency is a luxury we can't afford, especially with hospital systems remaining prime targets. New AI threats are emerging, demanding our attention and action.

Medtronic Faces Federal Lawsuits Over Recent Hack
Medtronic is facing a wave of federal lawsuits after a massive data breach exposed over 9 million records containing sensitive personal information, sparking concerns about the company's handling of customer data. The breach, attributed to the ransomware gang ShinyHunters, has left many questioning the vulnerability of medical device manufacturers to cyber threats.

Ransomware Attacks on Hospitals Target Patient Care, Spark Calls for Tougher Stance
Hospitals are under attack - literally. Last year, a staggering 460 ransomware attacks hit American hospitals and healthcare systems, causing 47 patient deaths, diverted ambulances, and canceled surgeries.

FDA Pilots AI for Real-Time Clinical Trials
The FDA is shaking up the 60-year-old clinical trial process by piloting AI and data science to speed up the development of life-changing drug therapies. By harnessing the power of artificial intelligence, the agency aims to enable real-time monitoring of safety signals and endpoints, cutting years off the traditional trial timeline.

UK Biobank Data Surfaces for Sale on Alibaba Amid Security Probe
UK Biobank data was mysteriously listed for sale on Alibaba, but thankfully, the listings were swiftly removed with the help of the UK and Chinese governments, and no sales were made. The sensitive data, which includes genomic information, health records, and medical imaging, had been shared with researchers but was de-identified to protect participants' identities.

Federal Agencies Drive Healthcare Transformation with Cloud Tech
Federal healthcare agencies face a daunting challenge: modernizing critical systems while millions of Americans rely on them - it's like changing a plane's engine mid-flight. Cloud technology is key to navigating this transformation, enabling agencies to deliver patient-centered care without interruption.

AI Drives Shift to Continuous Penetration Testing in Cloud Environments
The AI revolution is transforming technology like never before, and Evinova is at the forefront, shifting from annual penetration testing to continuous security validation to safeguard its cloud-native healthcare software. This bold move replaces traditional point-in-time assessments with ongoing validation, ensuring rock-solid security for its customers.

Medtronic Probes Corporate Data Breach After ShinyHunters Claims
Medtronic is investigating a corporate data breach after a cybercrime group called ShinyHunters claimed to have stolen over nine million records, including personal info and internal company data. The company confirmed that an unauthorized party accessed certain internal systems, sparking a probe into the incident.

Researchers Uncover 38 Flaws in OpenEMR Software
A security firm just uncovered 38 vulnerabilities in widely-used OpenEMR software, including two critical zero-day flaws that could have put sensitive healthcare data at risk - but thankfully, they've already been patched. The flaws were discovered using AI-driven analysis and have been fixed, safeguarding the data of around 100,000 healthcare providers worldwide.

China's Silk Typhoon Hacker Extradited to US Over COVID Cyberattacks
A Chinese hacker, Xu Zewei, has been extradited to the US from Italy for masterminding a series of devastating cyberattacks on US universities, immunologists, and virologists working on COVID-19 vaccines, treatments, and testing between 2020 and 2021. He faces charges of wire fraud and conspiracy for his role in the attacks.

Healthcare Breaches Decline, But Lax Email Security Persists
Alarmingly, nearly three-quarters of breached healthcare organizations had weak email defenses, with 74% either lacking a DMARC policy or having it set to monitor-only mode, leaving them vulnerable to attacks.

Medtronic Discloses Cyber Breach by ShinyHunters Gang
Medtronic recently reported a cyber breach by the ShinyHunters gang to federal authorities and the SEC, revealing that hackers had infiltrated its corporate IT system. Fortunately, the company has found no evidence that patient safety or electronic connections to customers were compromised.

Medtronic Breach Exposes Risks in Medical Tech Sector
The recent Medtronic data breach highlights a glaring vulnerability in the medical tech sector, with phishing attacks like this one proving that many organizations are still granting employees far more access than they need. Medtronic has confirmed the breach was contained within its corporate IT systems, with no evidence it impacted patient safety or product operations.

Medtronic Breach Exposes 9 Million Records to Hackers
Medtronic has confirmed a data breach affecting 9 million records, but thankfully, the hackers didn't compromise critical systems that could impact patient safety or product operations. The company's corporate IT systems were the target, and Medtronic assures that business operations, including manufacturing and distribution, remain unaffected.

HIPAA Fines Hit $1.7 Million for Risk Analysis Failures
The consequences of neglecting HIPAA risk analysis are steep: four entities recently paid a total of $1.7 million in fines for failing to conduct accurate, timely, and thorough assessments, exposing sensitive health information of nearly 427,000 individuals to hacking and ransomware threats.

AMA Warns Congress of AI Chatbot Data Risks in Mental Health
The American Medical Association is urging Congress to set safeguards for AI chatbots offering mental health guidance, warning of potential risks if these tools aren't designed and deployed responsibly. Well-designed AI tools, however, can bring significant benefits to mental healthcare.

Biobank Data Breach Exposes 500k Volunteers on Alibaba
A major data breach at UK-based Biobank has exposed the medical records of around 500,000 volunteers on the Chinese e-commerce site Alibaba, putting sensitive information at risk of being misused. The compromised dataset, described as one of the world's most comprehensive biomedical datasets, was listed for sale, sparking urgent concerns about data security.