According to a filing with the Maine attorney general’s office that was made public on December 20, a attack on medical large Resurrection on May 8 led to the disclosure of the health records of 5.6 million users. WHY IT MATTERS
After an individual at one of its facilities unintentionally downloaded a malignant report, believing it to be legitimate, the health system discovered that an attacker had gained access to its systems in June. The firm claimed that the affair was merely an honest error. Additionally, Ascension discovered that sensitive information about current and former people, top living people, and people could be exposed as a result of months of investigation with third-party professionals. According to an Resurrection news from December 19th, the compromised information may include medical records, such as medical record amounts, company times, laboratory exam types, and process codes. Pay information, including credit card or bank account numbers, comprehensive details ranging from Medicaid and Medicare IDs to plan numbers and claims, authorities identification, including Social Security numbers, tax IDs, driver’s licenses or passports, and private information such as addresses and dates of birth were probably involved. Assemblage also confirmed that no one could access their electronic health records or other important clinical systems, which store comprehensive patient records securely. A cyberattack against Change Healthcare in February, the largest breach ever to be reported to federal regulators, is one of the other major healthcare breaches in 2024. 13.4 million people were affected by a data breach that exposed the information of patients and their plans, according to Kaiser Permanente in April. The Health Care Cybersecurity and Resiliency Act, a piece of legislation, is being considered to strengthen cybersecurity in healthcare. The bipartisan bill introduced in November would provide grants to healthcare organizations to aid in strengthening their capacity to stop and stop cyberattacks. In addition, governance continues to be a worrying weak point in healthcare, despite the rise in cyberattacks and the dangers of IoT medical devices. ON THE RECORD
Given the sheer volume of sensitive data organizations hold and the need to make information available to the medical staff as quickly as possible, senior adviser and director for security at cybersecurity consultancy NCC Group, Tim Rawlins, noted that healthcare will always be an attractive target. ” Basic cyber security measures, individual log ins, multi-factor authentication, and patched, secure and monitored systems will go a long way to preventing these attacks”, he said. Nathan Eddy is a freelancer working in healthcare and technology in Berlin.
Email the writer: nathaneddy@gmail.com
Twitter: @dropdeaded209