Tom Spring reports: Late last month, TrapX Labs’ security team spotted an uptick in the prevalence of a new more virulent strain of malware targeting hospitals and their IoT equipment. Researchers discovered attackers targeting unpatched medical equipment running Windows XP and Windows 7 with variations of attacks such as the Conficker worm, long thought obsolete. The…
Category: Health Data
CN: Hospital Hackers Steal Thousands of Newborn Baby Videos
Fan Yiying reports: Hackers have got their hands on nearly 6,000 private videos of newborn babies and uploaded them to a video-sharing website, according to a Tuesday report by online news outlet Phoenix New Media. The videos were recorded by the Anhui Women and Children Health Hospital in Hefei, the eastern provincial capital, and were part of…
Physician took work home, and there it stayed after his employment terminated (UPDATED)
Here’s a breach that was actually disclosed in June, but first was posted to HHS in July. Kudos to HIPAAJournal who found their statement on their website when my old eyes missed the small print. You can read HIPAAJournal’s coverage here. The following is from Midland Memorial Hospital’s statement concerning a breach that impacted 1,468 patients: MIDLAND,…
Another healthcare database hacked and put up for sale (UPDATED)
The blackhat using the Twitter handle @tdohack3r (TheDarkOverlord) has put yet another database with patient information up for sale. As with previous hacks, the database contains identity information that could be used for identity theft or fraud. It also contains medical insurance account information and codes related to the type of service. According to the listing…
Caldicott’s health security reform fails to address basic cyber hygiene
Richard Olver writes: The NHS treats more than 1 million people every 36 hours. These patients are often at their most vulnerable physically and emotionally, but so too are their digital selves. The health sector accounts for the most data security incidents in the UK — more than 40% of all UK incidents in Q4 2015 — and…
Analysis of Health Care Data Breach Litigation Trends
The law firm of Bryan Cave lists nine factors entities should look at when considering the risk that litigation poses following a breach. They note: Specifically, unless a plaintiff has been the victim of identity theft or has suffered some other type of concrete injury, most courts have refused to let them proceed based solely on the…