Editor's Note: Ransomware group RansomHub is threatening to sell information stolen in the Change Healthcare cyberattack after leaking some of the material to the dark web, according to an April 16 report in Becker’s Health IT. Comprising contracts, records, and other personal patient data, the posted material is part of…
Editor's Note The Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) proposed a new rule that would require hospitals and health systems to report any cyberattacks or ransomware attacks to the agency within 72 hours and any ransomware payments within 24 hours. The healthcare sector is one of…
Editor's Note In a March 9 Press release, CMS announced it will offer emergency funding for healthcare providers experiencing continued disruptions in the wake of a February 21 cyberattack on Change Healthcare, a subsidiary of UnitedHealthGroup and a major processor of medical claims. According to the release, CMS will extend…
Editor's Note Divisive cultural issues such as abortion, gender-related care, and disagreements over the COVID-19 pandemic will "amplify the health care sector's visibility as a potential target for attack" by domestic extremists, according to a March 4 ABC News report on a confidential memo issued by the Department of Homeland…
Editor's Note BlackCat, the ransomware group responsible for the cyberattack on UnitedHealth Group’s Change Healthcare received a $22 million payment in bitcoins, according to a post the group made online. Reutors reported the news March 4. Change Healthcare provides payment and revenue cycle management tools and is owned by UnitedHealth, the…
Editor's Note The ransomware group behind a recent cyberattack on one of the nation’s largest health systems has its sights set on hospitals, the FBI and the Department of Health and Human Services (HHS) warned February 27. According to a report in Chief Healthcare Executive one day later, systems were…
What is the purpose of the top 10 health technology hazards list, released every year by ECRI? “Our number one goal at ECRI is to reduce preventable harm,” stresses Jason Launders, MSC, former director of operations, device evaluation, at ECRI. “We know that every healthcare provider has a lot they…
Editor's Note ECRI, an independent, nonprofit organization that aims to improve the safety, quality, and cost-effectiveness of care across all healthcare settings, every year compiles and unveils a list of the top 10 technology hazards affecting patient care. The motivation for producing this list, according to Jason Launders, director of…
Editor's Note A near doubling of ransomware attacks on healthcare systems from 2022 to 2023 could point to a problematic trend, according to a January 2 report from cybersecurity firm Emsisoft. Specifically, findings show 46 ransomware attacks in 2023 compared to 25 in 2022 and 27 in 2021. The 2023…
Editor's Note The FBI has infiltrated the ransomware group BlackCat—the group responsible for a February cyberattack on the Lehigh Valley Health Network—and issued a decryption tool enabling victims around the world to restore their systems, according to a December 19 Justice Department press release. Emerging during the past 18…