Category Archives: Latest Posts

Healthcare Sector Warned About Cuba Ransomware Attacks

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have issued a joint cybersecurity advisory about Cuba Ransomware and have shared details of the tactics, techniques, and procedures (TTPs) used by the group, along with Indicators of Compromise (IoCs) to help network defenders improve their defenses against attacks and rapidly… Read More »

San Juan Regional Medical Center Settles Data Breach Lawsuit

San Juan Regional Medical Center (SJRMC) in Farmington, New Mexico, has proposed a settlement to resolve a class action lawsuit filed in response to a September 2020 data breach that affected 68,792 patients. On September 8, 2020, hackers gained access to the SJRMC network and exfiltrated files that contained patient information such as names, dates… Read More »

LastPass Confirms Customer Data Breached in Hacking Incident

LastPass has confirmed that hackers have gained access to a third-party cloud storage service that contained customer data, although no user passwords were compromised.  The hacking incident is linked to the security breach that occurred in August 2022. In August, a hacker successfully compromised a developer account that provided access to the LastPass developer environment.… Read More »

One Brooklyn Health Dealing with Ongoing Cyber Incident

One Brooklyn Health System is currently dealing with a cyberattack that has caused disruption at its three hospitals – Interfaith Medical Center, Brookdale Hospital Medical Center, and Kingsbrook Jewish Medical Center. Little information has been released about the attack so far, which is believed to have occurred on or just before November 19. That was… Read More »

119 Pediatric Practices Affected by Breach at EHR Vendor – 2.2 Million Patients Affected

Connexin Software Inc., which provides electronic medical records and practice management software (Office Practicum) to pediatric physician practice groups has recently confirmed that it was the victim of a cyberattack in which an unauthorized third party gained access to its internal computer network. While the electronic medical record system was not accessed in the attack,… Read More »

Interview: John Jessop, Sr. Director, HIPAA Security & Regulatory Compliance, PPFA

HIPAA Journal is conducting interviews with healthcare professionals and service providers to find out more about their compliance journeys, how the HIPAA Rules have affected their working lives, and the successes and challenges they have faced with HIPAA compliance. John Jessop, MHA, CISSP, CHPS, HCISPP, CISA, CMPE, Sr. Director, HIPAA Security & Regulatory Compliance, PPFA… Read More »