Editor's Note BlackCat, the ransomware group responsible for the cyberattack on UnitedHealth Group’s Change Healthcare received a $22 million payment in bitcoins, according to a post the group made online. Reutors reported the news March 4. Change Healthcare provides payment and revenue cycle management tools and is owned by UnitedHealth, the…

Read More

Editor's Note The ransomware group behind a recent cyberattack on one of the nation’s largest health systems has its sights set on hospitals, the FBI and the Department of Health and Human Services (HHS) warned February 27. According to a report in Chief Healthcare Executive one day later, systems were…

Read More

What is the purpose of the top 10 health technology hazards list, released every year by ECRI? “Our number one goal at ECRI is to reduce preventable harm,” stresses Jason Launders, MSC, former director of operations, device evaluation, at ECRI. “We know that every healthcare provider has a lot they…

Read More

Editor's Note Nationwide pharmacy delays and disrupted internal systems are among the effects of a February 21 cyberattack on Change Healthcare, one of the largest healthcare technology companies in the United States. Systems were immediately disconnected to protect partners and patients, the organization reports, and “all other systems across UnitedHealth…

Read More

Editor's Note Billing, records, appointment scheduling and other systems at Lurie Children’s Hospital were still offline a week after representatives of had to cancel a planned OR Business Management Conference presentation due to a cyberattack. According to a February 12 report from the Chicago Sun-Times, the January 31 cyberattack is…

Read More

Editor's Note:  In a sophisticated new scheme, hackers are stealing the identity of hospital employees in financial roles—such as revenue cycle employees—and then reaching out to the hospitals’ IT help desk in order to reset passwords, receive access codes, and redirect funds.  The American Hospital Association (AHA) sent out an…

Read More

Editor's Note A near doubling of ransomware attacks on healthcare systems from 2022 to 2023 could point to a problematic trend, according to a January 2 report from cybersecurity firm Emsisoft. Specifically, findings show 46 ransomware attacks in 2023 compared to 25 in 2022 and 27 in 2021. The 2023…

Read More

Editor's Note The FBI has infiltrated the ransomware group BlackCat—the group responsible for a February cyberattack on the Lehigh Valley Health Network—and issued a decryption tool enabling victims around the world to restore their systems, according to a December 19 Justice Department press release.   Emerging during the past 18…

Read More

Editor's Note The US Department of Health and Human Services (HHS) released a new concept paper on the department’s strategy regarding cybersecurity for the healthcare sector, a December 6 HHS press release reports. The paper details four pillars for action:  publishing new voluntary healthcare-specific cybersecurity performance goals working with Congress…

Read More

Editor's Note The US Food and Drug Administration (FDA) has recognized the latest guidance on medical device cybersecurity from the Association for the Advancement of Medical Instrumentation (AAMI), an AAMI November 14 press release reports. This latest cybersecurity recognition is encouraging its use across the medical device manufacturing industry to…

Read More