HIPAA Journal

MAY 1, 2023

The Health Sector Cybersecurity and Coordination Center (HC3) has issued a fresh ransomware warning to the healthcare and public health (HPH) sector following a spate of attacks on the HPH sector in April by the Clop and LockBit ransomware groups. LockBit ransomware was deployed in some of the attacks.

Ransomware 121

Ransomware HIPAA Public Health 121

HIPAA Journal

APRIL 26, 2023

Ransomware actors continue to target the U.S. The most commonly detected malware were droppers, downloaders, remote access tools (RATs), and ransomware. Emotet is capable of self-propagation and lateral movement and is used to deliver malware and ransomware payloads.

Ransomware 123

Ransomware HIPAA Hospitals 123

HIPAA Journal

DECEMBER 31, 2022

All HIPAA covered entities must familiarize themselves with the HIPAA breach notification requirements and develop a breach response plan that can be implemented as soon as a breach of unsecured protected health information (PHI) is discovered. Summary of the HIPAA Breach Notification Rule.

HIPAA 126

HIPAA Compliance Ransomware 126

HIPAA Journal

MARCH 24, 2023

Ransomware activity increased in February according to the latest GRIT Ransomware Report from GuidePoint Security. ransomware group was particularly active in February, posting more than twice the number of victims (129) on its leak site as January (50), accounting for virtually all of the monthly increase in attacks.

Ransomware 133

Ransomware HIPAA Public Health 133

HIPAA Journal

JUNE 5, 2023

Multiple class action lawsuits have been filed against the city of Oakland in California over a ransomware attack and data breach that involved the theft of the personal and protected health information of 13,000 current and former employees. The ransomware attack is understood to have started with phishing emails.

Ransomware 59

Ransomware HIPAA Fraud 59

HIPAA Journal

MARCH 9, 2022

Requirements to implement HIPAA safeguards appear more often in the text of the Healthcare Insurance Portability and Accountability Act than is often acknowledged. There is also a section relating to the Organization Requirements of the Privacy and Security Rules – both of which include further HIPAA safeguards.

HIPAA 124

HIPAA Ransomware Due Diligence Compliance 124

HIPAA Journal

JUNE 6, 2023

Ransomware Attacks Remain Steady Ransomware attacks continue to be conducted in high numbers but the number of attacks has remained steady, accounting for 24% of incidents and 15.5% of data breaches – a slight increase in ransomware incidents from last year and a slight decrease in ransomware-related data breaches.

Ransomware 87

Ransomware HIPAA 87

HIPAA Journal

JANUARY 3, 2023

Ransomware attacks continue to be conducted on healthcare organizations in high numbers but determining the extent to which healthcare organizations are being targeted by ransomware gangs is a challenge. The decision whether or not to encrypt appears to be taken on an attack-by-attack basis.

Ransomware 127

Ransomware Hospitals HIPAA Fraud 127

HIPAA Journal

JUNE 29, 2022

On June 25, 2022, a spokesperson for a threat group called DAIXIN Team contacted HIPAA Journal to share information about a ransomware attack and data theft incident at Fitzgibbon Hospital in Marshall, Missouri. DAIXIN Team was previously not known to HIPAA Journal and appears to be a new ransomware group.

Ransomware 133

Ransomware Hospitals HIPAA Health Insurance 133

HIPAA Journal

FEBRUARY 27, 2023

The healthcare and public health (HPH) sector has been warned about cyberattacks involving MedusaLocker ransomware – one of the lesser-known ransomware variants used in cyberattacks on the sector. The ransomware variant was first detected in September 2019 and the group is thought to primarily target the HPH sector.

Ransomware 120

Ransomware HIPAA Public Health 120

HIPAA Journal

FEBRUARY 6, 2023

The French Computer Emergency Response Team (CERT-FR) has warned about an ongoing ransomware campaign targeting VMware ESXi hypervisors that have not been patched against the critical heap-overflow vulnerability tracked as CVE-2021-21974. After applying the mitigations, system scans should be performed to detect signs of compromise.

Ransomware 140

Ransomware HIPAA 140

HIPAA Journal

JUNE 2, 2023

The Farmingdale, NY-based biotech and diagnostics company, Enzo Biochem, has recently confirmed in an 8-K filing with the Securities and Exchange Commission that the clinical test information of 2.470,000 patients was compromised in an April 6, 2023, ransomware attack. The post Clinical Test Data of 2.5

Ransomware 79

Ransomware HIPAA COVID-19 79

HIPAA Journal

DECEMBER 8, 2022

The New York ambulance service, Empress EMS, is facing multiple class action lawsuits over a ransomware attack that was detected on July 14, 2022. The Hive ransomware group was behind the attack, and as per the group’s modus operandi , after gaining access to the network, sensitive files were stolen, then files were encrypted.

Ransomware 118

Ransomware HIPAA Fraud 118

HIPAA Journal

MARCH 23, 2023

Ransomware gangs are increasingly skipping file encryption and are concentrating on data theft and extortion, according to a recent report from Palo Alto Networks’ Unit 42 team. In the second half of 2021 and throughout 2022, around 1 in 10 attacks by ransomware gangs did not involve file encryption, only data theft and extortion.

Ransomware 104

Ransomware HIPAA Hospitals 104

HIPAA Journal

NOVEMBER 23, 2022

The healthcare and public health sector (HPH) has been warned about the threat of ransomware attacks by the Lorenz threat group, which has conducted several attacks in the United States over the past two years, with no sign that attacks are slowing. In contrast to most other ransomware gangs, relatively little is known about this group.

Ransomware 141

Ransomware HIPAA Public Health 141

HIPAA Journal

MAY 8, 2023

While the exact nature of the cyberattack has not been disclosed, this is understood to be a ransomware attack involving data theft. The post Ransomware Attack Results in 2 Week Shutdown of Operations at TN Medical Clinic appeared first on HIPAA Journal.

Ransomware 137

Ransomware HIPAA 137

HIPAA Journal

NOVEMBER 23, 2022

Databreaches.net investigated and identified an entry on the data leak site of a relatively unknown ransomware group called Project Relic, which has claimed responsibility for the attack. According to Blackpoint, the ransomware is written in Go due to its portability, speed, and the minimal chance of it being detected by static analysis.

Ransomware 139

Ransomware Hospitals HIPAA Doctors 139

HIPAA Journal

MARCH 16, 2023

The Health Sector Cybersecurity Coordination Center (HC3) has shared threat intelligence information about the Black Basta ransomware group to help network defenders prevent and rapidly detect attacks in progress. The Black Basta group was first identified in April 2022 and is known to conduct ransomware and extortion attacks.

Ransomware 116

Ransomware HIPAA Governance 116

HIPAA Journal

DECEMBER 5, 2022

The Cuba ransomware group has increased attacks in the United States, with attacks doubling since December 2021, and ransom payments are also on the rise. According to CISA and the FBI, there are similarities between the infrastructure used by the Cuba ransomware operation and the RomCom RAT and Industrial Spy ransomware actors.

Ransomware 131

Ransomware Public Health HIPAA Governance 131

Compliancy Group

MAY 27, 2022

Here’s a roundup of recent HIPAA breach lawsuits and settlements. Lawsuits Increasing Following HIPAA Breaches – Facts and Figures. 35% of healthcare breaches involved ransomware attacks, vs. 20% in 2020. The average ransomware payment for healthcare was $875,784, about one-third less than the 2020 payment.

HIPAA 98

HIPAA Ransomware Health Insurance Hospitals 98

HIPAA Journal

MAY 18, 2023

A joint cybersecurity alert has been issued by the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and Australian Cyber Security Centre (ACSC) about the BianLian ransomware and data extortion group.

Ransomware 112

Ransomware HIPAA Public Health 112

HIPAA Journal

DECEMBER 9, 2022

The Health Sector Cybersecurity Coordination Center (HC3) has issued a warning to the healthcare and public health (HPH) sector about Royal ransomware attacks. Royal ransomware is a new ransomware threat that was first observed being used in attacks in September 2022. Both will prevent files from being opened.

Ransomware 128

Ransomware HIPAA Public Health 128

HIPAA Journal

APRIL 5, 2023

Montgomery General Hospital in West Virginia has suffered a cyberattack that saw unauthorized individuals gain access to its IT systems on or around February 28, 2023, and deploy ransomware on or around March 1, 2023. The post Montgomery General Hospital Suffers Ransomware Attack and Data Leak appeared first on HIPAA Journal.

Ransomware 102

Ransomware Hospitals Electronic Medical Records HIPAA 102

HIPAA Journal

MARCH 15, 2023

Cybersecurity and Infrastructure Agency (CISA) has launched a new pilot program in response to the increase in ransomware attacks on critical infrastructure entities. The program is focused on identifying vulnerabilities in Internet-facing systems that are known to have been exploited by ransomware gangs in previous attacks.

Ransomware 103

Ransomware HIPAA Governance Hospitals 103

HIPAA Journal

MARCH 21, 2023

ransomware, also known as LockBit Black. The LockBit ransomware group has been in operation since at least September 2019 and is one of the most prolific ransomware groups. LockBit is a ransomware-as-a-service operation that recruits affiliates to conduct attacks in return for a cut of the ransoms they generate.

Ransomware 115

Ransomware Hospitals HIPAA 115

HIPAA Journal

FEBRUARY 10, 2023

Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), Federal Bureau of Investigation (FBI), Department of Health and Human Services (HHS), and the Republic of Korea’s Defense Security Agency and National Intelligence Service warning of state-sponsored North Korean (DPRK) ransomware attacks on U.S.

Ransomware 115

Ransomware US Department of Health and Human Services HIPAA Hospitals 115

HIPAA Journal

MARCH 18, 2022

A large percentage of those breaches could have been prevented if HIPAA-regulated entities were fully compliant with the HIPAA Security Rule. Coveware’s Q2, 2021 Quarterly Ransomware Report suggests 42% of ransomware attacks in the quarter saw initial network access gained via phishing emails. Prevention of Phishing.

HIPAA 142

HIPAA Compliance Ransomware Healthcare information Technology 142

HIPAA Journal

FEBRUARY 16, 2023

The October 2022 ransomware attack on CommonSpirit Health has cost the health system more than $150 million to date according to its recent quarterly filing, and the costs are continuing to increase as the investigation into the attack and data breach are ongoing. Healthcare data breaches are the costliest data breaches to resolve.

Ransomware 120

Ransomware HIPAA 120

HIPAA Journal

JUNE 8, 2023

.), a provider of call center and customer experience software technology to large enterprises, has recently confirmed that it fell victim to a ransomware attack on a limited portion of its network. The post Alvaria Confirms November 2022 Hive Ransomware Attack appeared first on HIPAA Journal.

Ransomware 52

Ransomware HIPAA Health Insurance Fraud 52

HIPAA Journal

APRIL 21, 2023

Ransomware attacks increased by 91% in March 2023, according to a new analysis by NCC Group. The massive increase was due to the zero-day vulnerability (CVE-2023-0669) in Fortra’s GoAnywhere MFT file management solution, which was exploited by the Clop ransomware group in 130 attacks on companies over a 10-day period.

Ransomware 105

Ransomware HIPAA 105

HIPAA Journal

MARCH 15, 2023

A lawsuit has been filed against Lehigh Valley Health Network (LVHN) over its recent BlackCat ransomware attack. The attack saw files encrypted after data was exfiltrated as is typical in ransomware attacks; however, the attack stood out due to the aggressive move of the threat group to increase the pressure on LVHN to pay the ransom.

Ransomware 111

Ransomware HIPAA Fraud Licensing 111

HIPAA Journal

MARCH 9, 2023

In what is believed to be a first, the BlackCat ransomware gang has published naked images of patients that were stolen in one of its attacks on a healthcare organization in an attempt to pressure the victim into paying the ransom. BlackCat is not the only ransomware gang to try new tactics to get victims to pay up.

Ransomware 124

Ransomware HIPAA Public Health 124

HIPAA Journal

MARCH 9, 2023

A joint cybersecurity advisory has been published by CISA and the FBI, sharing details of the tactics, techniques, and procedures (TTPs) used by the Royal ransomware gang and Indicators of Compromise (IoCs) to help network defenders better protect against attacks. Full IoCs and TTPs are detailed in the cybersecurity alert.

Ransomware 101

Ransomware HIPAA Public Health 101

HIPAA Journal

MAY 25, 2023

In April 2023, Point32Health, the second-largest health insurer in Massachusetts and the parent company of Tufts Health Plan and Harvard Pilgrim Health Care, announced it suffered a ransomware attack that resulted in system outages, including the systems that serviced members, accounts, brokers, and providers.

Ransomware 94

Ransomware Health Insurance HIPAA Medicare 94

HIPAA Journal

DECEMBER 13, 2022

The Health Sector Cybersecurity Coordination Center (HC3) has released analyses of two ransomware variants that are being used in attacks on the healthcare sector: LockBit 3.0 LockBit ransomware was first detected in September 2019 when it was known as ABCD ransomware. and has code similar to DarkSide and BlackMatter ransomware.

Ransomware 138

Ransomware HIPAA 138

Becker's Health IT

FEBRUARY 24, 2023

Los Angeles-based Regal Medical Group and its affiliates are facing multiple lawsuits over a ransomware attack that affected 3.3 million of their patients, HIPAA Journal reported.

Ransomware 98

Ransomware HIPAA 98

HIPAA Journal

JUNE 6, 2022

Ransomware attacks on healthcare organizations increased by 94% year over year, according to the 2022 State of Ransomware Report from cybersecurity firm Sophos. This year’s report focused on the rapidly evolving relationship between ransomware and cyber insurance in healthcare.

Ransomware 142

Ransomware HIPAA 142