Literature Review
All posts tagged with “Technology / Innovations News | Cyberattack / Ransomware.”
Healthcare hit hardest by ransomware last year, FBI IC3 report shows
03/19/24 at 03:00 AMHealthcare hit hardest by ransomware last year, FBI IC3 report shows HealthITSecurity, by Jill McKeon; 3/12/24 The healthcare sector suffered more ransomware attacks than any other critical infrastructure sector last year, according to complaint data examined in the Federal Bureau of Investigation’s 2023 Internet Crime Report. ... In 2023, IC3 received a record 880,418 complaints, with losses exceeding $12.5 billion. These figures signify a 10 percent increase in complaints received and a 22 percent increase in losses suffered compared to last year’s report.
Should the DOJ break up UnitedHealth Group?
03/19/24 at 02:00 AMShould the DOJ break up UnitedHealth Group? MedCity News, by Marissa Plescia; 3/17/24 The U.S. Department of Justice has reportedly recently launched an antitrust investigation of UnitedHealth Group, which begs the question of whether the healthcare giant should be broken up. Experts have varying opinions.
HIMSS24: Change Healthcare outage is the elephant in the room
03/18/24 at 03:00 AMHIMSS24: Change Healthcare outage is the elephant in the room Modern Healthcare - Digital Health, by Brock E.W. Turner; 3/14/24 There's certainly buzz about the Change Healthcare data breach at the Healthcare Information and Management Systems Society’s annual conference. But getting executives to talk openly about it is a non-starter. The breach, which has hobbled systems nationwide, has put even greater emphasis on the topics of cybersecurity and protecting patient data. But many attendees at the event in Orlando, Florida, have been unwilling to discuss it on the record, citing their relationship with the claims processing company owned by UnitedHealth Group.
CMS Statement on continued action to respond to the cyberattack on change healthcare
03/14/24 at 02:00 AMCMS Statement on continued action to respond to the cyberattack on change healthcareCMS.gov Press Release; 3/9/24 The Centers for Medicare & Medicaid Services (CMS) is continuing to monitor and assess the impact that the cyberattack on UnitedHealth Group’s subsidiary Change Healthcare has had on all provider and supplier types. Today, CMS is announcing that, in addition to considering applications for accelerated payments for Medicare Part A providers, we will also be considering applications for advance payments for Part B suppliers.
US officials call on UnitedHealth to accelerate payments to providers
03/12/24 at 03:00 AMUS officials call on UnitedHealth to accelerate payments to providers The United Business Journal, by Rahul Kumar; 3/11/24In a recent open letter, officials from the U.S. government expressed urgency for UnitedHealth Group to expedite payments to healthcare providers. This plea came in the wake of a debilitating cyberattack on the insurer’s Change Healthcare tech unit, which severely disrupted medical claims processing and payments. The U.S. Department of Labor and the U.S. Department of Health and Human Services emphasized the critical need for UnitedHealth to take swift action to ensure that healthcare providers do not face financial strain due to the cyberattack.
Why healthcare cyberattacks last so long
03/08/24 at 03:00 AMWhy healthcare cyberattacks last so long Becker's Health IT, by Giles Bruce; 3/7/24 The cyberattack on Change Healthcare that has caused disruptions across a wide swath of the industry has entered its third week. But why do these IT outages last so long?
CMS offers relief to providers affected by Change Healthcare outage
03/07/24 at 03:00 AMCMS offers relief to providers affected by Change Healthcare outageModern Healthcare, by Lauren Berryman; 3/5/24The Centers for Medicare and Medicaid Services has rolled out efforts to help providers navigate the Change Healthcare outage disrupting healthcare operations nationwide, the Health and Human Services Department announced Tuesday.Editor's Note: Access to the full article requires a subscription
HHS intervenes in Change Healthcare hack
03/07/24 at 03:00 AMHHS intervenes in Change Healthcare hack Becker's Health IT, by Giles Bruce; 3/5/24HHS said March 5 it would help accelerate payments to hospitals affected by the Change Healthcare cyberattack and institute other workarounds for providers. The agency said hospitals facing cash-flow issues from the IT outage can submit accelerated payment requests, like those issued during the pandemic, to their Medicare Administrative Contractors for "individual consideration." HHS said more details would be coming from the contractors later this week.
Hackers behind Change Healthcare breach get $22M
03/06/24 at 03:00 AMHackers behind Change Healthcare breach get $22M Becker's Health IT, by Laura Dyrda; 3/5/24The cybercriminal organization responsible for hacking UnitedHealth Group's Change Healthcare has received a multimillion dollar payment in bitcoins, according to Reuters.UnitedHealth Group said Change was hit by BlackCat ransomware group Feb. 21, forcing its systems offline. The claims processing and revenue cycle management platform is still working to restore functionality, and asked health systems to use alternative methods for claims processing while its systems are down. BlackCat claimed it stole 6 terabytes of data from Change, including medical records and Social Security numbers.
Pharmacy associations join forces to advocate for pharmacists during change healthcare outage
03/05/24 at 03:00 AMPharmacy associations join forces to advocate for pharmacists during change healthcare outageNewswire Press Release; 3/3/24 Association executives from the American Pharmacists Association (APhA), the National Community Pharmacists Association (NCPA), the National Alliance of State Pharmacy Associations (NASPA), and the American Society of Consultant Pharmacists (ASCP) released an open letter to pharmacy benefit manager (PBM) executives and other insurance payers whose systems may have been impacted by the Change Healthcare outage. Pharmacists and pharmacies are asking for assurances that claims fulfilled during this outage will be paid, and paid in a timely manner, considering the challenges faced by pharmacies and pharmacists with predicting co-payments and determining eligibility and coverage.
Change Healthcare outage: AHA slams UnitedHealth funding program
03/05/24 at 03:00 AMChange Healthcare outage: AHA slams UnitedHealth funding program Modern Healthcare - Cybersecurity, by Lauren Berryman; 3/4/2024The American Hospital Association slammed UnitedHealth Group's offer of financial assistance for some healthcare providers in the wake of the cyberattack on Change Healthcare and called on Congress for assistance. AHA President and CEO Richard Pollack said Change Healthcare parent company UnitedHealth Group's temporary loan program misses the mark in a letter sent Monday to UnitedHealth Group President and Chief Operating Officer Dirk McMahon. Pollack criticized the initiative for what he described as its limited eligibility criteria and unfair contract terms and conditions.
Why health care has become a top target for cybercriminals
03/05/24 at 03:00 AMWhy health care has become a top target for cybercriminals The Mercury News, by Elise Takahama of The Seattle Times; 3/1/24, updated 3/2/24 Cyberattacks of all sorts have plagued large corporations, small businesses and individuals for decades now, but in the past several years, health care has become a top target, according to federal and local cybersecurity experts. ... [Click on the title to read more about ...]
Change Healthcare's temporary funding program 'not even a Band-Aid,' AHA says
03/05/24 at 03:00 AMChange Healthcare's temporary funding program 'not even a Band-Aid,' AHA says Becker's Health IT, by Giles Bruce; 3/4/24 The American Hospital Association called Change Healthcare's temporary funding program for providers affected by the cyberattack on the UnitedHealth Group subsidiary inadequate, while a U.S. Senate leader asked CMS to speed up payments to hospitals. Change Healthcare set up the funding assistance March 1 for providers facing cash-flow issues after losing access to its payer systems, which have been down since the Feb. 21 ransomware attack. However, AHA President and CEO Rick Pollack wrote in a March 4 letter to UnitedHealth Group that the program is "not even a Band-Aid on the payment problems you identify."
Double your cybersecurity spending, CIO warns amid Change Healthcare attack
03/04/24 at 03:15 AMDouble your cybersecurity spending, CIO warns amid Change Healthcare attack Becker's Health IT, by Naomi Diaz; 2/29/24What does the Change Healthcare ransomware incident mean for healthcare organizations? Doubling your cybersecurity spending, according to one health system CIO. Will Weider, CIO and senior vice president of Wausau, WI-based Aspirus Health, shared five thoughts on LinkedIn Feb. 29 about the incident, saying, "Whatever you planned to spend to improve cybersecurity, double it." Additionally, Mr. Weider stated that in light of this incident, healthcare organizations should: ...
Message from HHS about an ongoing active cybersecurity threat to your IT resources
03/04/24 at 03:00 AMMessage from HHS about an ongoing active cybersecurity threat to your IT resourcesEmail from CMS; 3/1/24 Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) to help organizations protect against ransomware. Visit stopransomware.gov to see all #StopRansomware advisories and to learn more about other ransomware threats and no-cost resources.The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the Department of Health and Human Services (HHS) are releasing this joint CSA to disseminate known IOCs and TTPs associated with the ALPHV Blackcat ransomware as a service (RaaS) identified through FBI investigations as recently as February 2024.
The ransomware groups targeting healthcare
03/04/24 at 03:00 AMThe ransomware groups targeting healthcare Becker's Health IT, by Naomi Diaz; 2/29/24Russia-based ransomware gang ALPHV/Blackcat, aka BlackCat, has made headlines due to its attack on Change Healthcare, but the group has been targeting healthcare for a while. "This group in particular has been very aggressive targeting healthcare and has been responsible for numerous high-impact attacks," John Riggi, the American Hospital Association's national adviser for cybersecurity and risk, told Becker's. BlackCat, which uses a ransomware-as-a-service model, is known as the "second most prolific ransomware-as-a-service variant in the world," according to the Justice Department.
Ransomware gang behind Change Healthcare attack: Report
02/28/24 at 03:00 AMRansomware gang behind Change Healthcare attack: ReportBecker's Health IT, by Naomi Diaz; 2/26/24The BlackCat ransomware gang is claiming responsibility for an attack on Change Healthcare, TheRegister reported Feb. 26. Two people familiar with the matter told news outlet Reuters that BlackCat, which operates as a ransomware-as-a-service group, was behind the Feb. 21 cybersecurity incident on Change Healthcare. ... A Feb. 26 update on Optum's website indicates that the Change Healthcare incident, which has disrupted the organization's payment and pharmacy processing operations, is still ongoing.
'An attack on the entire sector': Fallout from Change Healthcare hack continues
02/27/24 at 03:00 AM'An attack on the entire sector': Fallout from Change Healthcare hack continues Becker's Health IT, by Giles Bruce; 2/26/24 Change Healthcare said Feb. 26 that it expects the cybersecurity incident that has disrupted its payment and pharmacy processing operations to last at least through the day. The Optum subsidiary has been dealing with the issue since Feb. 21, reporting that it disconnected its systems so its partners, which include thousands of hospitals, didn't have to. The company said it suspects a nation-state was behind the attack.
UnitedHealth unplugs change healthcare information systems to contain cyber attack
02/26/24 at 03:00 AMUnitedHealth unplugs change healthcare information systems to contain cyber attackManaged Healthcare Executive, by Peter Wehrwein; 2/23/24UnitedHealth Group disconnected Change Healthcare's information system to contain a cyberattack that the company says is from an unnamed “nation-state associated cyber security threat actor.”
Healthcare data breaches set record in 2023
02/12/24 at 03:15 AMHealthcare data breaches set record in 2023Becker's Health IT, by Giles Bruce; 2/7/24Healthcare data breaches hit an all-time high in 2023 as cybersecurity concerns continue to plague the industry, HIPAA Journal reported. More than 133 million patient records were breached last year, more than double the number in 2022 (51.9 million), according to the publication's analysis of HHS data.
Healthcare data breaches hit new highs in 2023
01/31/24 at 03:55 AMHealthcare data breaches hit new highs in 2023Modern Healthcare, by Tim Broderick; 1/25/24A record 133 million individuals were impacted by healthcare data breaches. Imagine after purchasing a car the salesperson slaps the hood and says there's a 40% chance in the coming year that an unauthorized person will gain access to it or just outright steal the car.Full access to article requires a subscription
Coastal Hospice & Palliative Care hit with data breach of patient information
01/25/24 at 03:00 AMCoastal Hospice & Palliative Care hit with data breach of patient informationThe Daily Record (MD); 1/23/24Salisbury-based Coastal Hospice & Palliative Care on Tuesday reported a data security incident that involved some of its patient data including certain personal and protected health information. Coastal Hospice has sent notification of this incident to potentially affected individuals and provided resources to assist them.
How can hospitals prepare for 2024’s cyberthreats?
01/02/24 at 04:00 AMHow can hospitals prepare for 2024’s cyberthreats?MedCity News, by Katie Adams; 12/27/23Many hospitals remain underprepared to protect themselves against cybercriminals’ barrage of increasingly sophisticated attacks, but there are a couple concrete steps they can take to build a stronger defense structure — like virtual patching and thinking twice about moving to the cloud.
1 million Corewell Health patients could be impacted by second data breach
12/30/23 at 03:20 AM1 million Corewell Health patients could be impacted by second data breachAnn Arbor (MI) NewsDecember 26, 2023Grand Rapids, MI—About one million Corewell Health patients in southeast Michigan may have had their personal and medical information exposed in yet another nationwide data breach. ... It comes less than a month after a data breach of another Corewell Health vendor that also is believed to have exposed similar personal and medical information of about one million patients serviced by the health system in southeast Michigan.
Ohio hospital, vendor hit with class action suit after data breach
12/27/23 at 03:52 AMOhio hospital, vendor hit with class action suit after data breachHealthcare DiveDecember 22, 2023A nonprofit hospital in Ohio and a medical transcription services company are facing a class action lawsuit after a data breach at the vendor earlier this year may have exposed personal and health information of nearly nine million people. The suit, filed this week in a district court in Ohio, alleges Salem Community Hospital and Perry Johnson & Associates, or PJ&A, waited six months to inform people who could have been affected by the breach, leaving patients vulnerable to identify theft.