Our Tools

Health IT Security, December 23, 2022 MultiCare Health System in Washington suffered a third-party data breach that originated at its mailing service provider, Kaye-Smith. As previously reported, the breach at Kaye-Smith impacted other healthcare organizations,...

IT World Canada, December 22, 2022 The impact of the ransomware attack that hit Toronto’s Hospital for Sick Children may last for weeks. In an online statement today the hospital said it anticipates that it will be a matter of weeks before all systems are functioning...

SC Media, December 22, 2022 The pro-Russian hacktivist group known as "KillNet" targeted a U.S. healthcare entity. The attack should serve as a warning to provider organizations to be on the alert and shore up defenses to prevent a similar outcome, according to the...

Tech Report, December 21, 2022 A new ransomware named Royal has infected Healthcare and Public Healthcare sectors in the US. It is unknown how many successful attacks have occurred but Health Sector Cybersecurity Coordination Center (HC3) have stated that ransoms from...

SC Media, December 21, 2022 Ransomware attacks rose 41% last month as threat actor groups shifted top spots, according to new research from NCC Group. Read full SC Media article.

SC Media, December 19, 2022 Provider organizations are being urged to prioritize patching of a critical vulnerability in the Citrix Application Delivery Controller and Gateway platforms, as threat actors have already compromised multiple healthcare entities by...

Gov Info Security, December 16, 2022 Nearly a quarter million Medicare beneficiaries require new identifiers and ID cards following a ransomware attack on a government contractor that compromised a range of sensitive personal and health information. Read full Gov Info...

SC Media, December 15, 2022 The Department of Health and Human Services Centers for Medicare and Medicaid Services is currently notifying 254,000 out of its 64 million Medicare beneficiaries that their data was compromised after a ransomware attack on one of its...

Becker's Health IT, December 14, 2022 The Health Sector Cybersecurity Coordination Center, or HC3, is warning healthcare organizations to be on the lookout for the BlackCat ransomware variant. Known to be in operation since November 2021, BlackCat has already targeted...

Health IT Security, December 14, 2022 The HHS Health Sector Cybersecurity Coordination Center (HC3) issued two new analyst notes detailing the tactics and indicators of compromise for LockBit 3.0 and BlackCat. The LockBit ransomware family and the BlackCat ransomware...

Healthcare Info Security, December 14, 2022 Ransomware operations have become expert at finding ways to make a victim pay, and healthcare organizations are no exception. But experts say there are multiple steps healthcare sector entities in particular can take to...

Bank Info Security, December 13, 2022 A ransomware attack on the Irish healthcare system in 2021 has caused 80 million euros in damages and counting as the government continues to notify victims of the incident that their personal information was illegally accessed...

SC Media, December 13, 2022 Healthcare cybersecurity leaders are being urged to review the IOCs and the recommended proactive measures for defending against BlackCat and LockBit 3.0 ransomware variants given the continued targeting of healthcare environments. Read...

SC Media, December 12, 2022 Ninety percent of 10 largest healthcare data breaches reported this year were caused by third-party vendors, much like in 2021. The fallout for many of these cyberattacks resulted in impacts for multiple connected providers, with two of...

HHS, December 12, 2022 HC3: Analyst Note. Report: 202212121700 LockBit 3.0 Ransomware LockBit 3.0 is the newest version of the LockBit ransomware that was first discovered in September 2019. The ransomware family has a history of using the Ransomware-as-a-service...

SC Media, December 8, 2022 Since the emergence of the human-operated ransomware threat group known as Royal in September, the Department of Health and Human Services Cybersecurity Coordination Center has been made aware of targeted cyberattacks against the healthcare...

SC Media, December 7, 2022 An assessment of the monthslong outage at New Zealand Waikato District Health Board last year revealed that despite being prepared and clear awareness of cybersecurity priorities, the response was dogged by a lack of practiced preparedness...

Healthcare Dive, December 5, 2022 Personal information of patients and their family and caregivers may have been accessed. System said it discovered that cyberattackers gained access to portions of its network. Impacted people may have received services from certain...

Becker's Health IT, December 5, 2022 Silverdale, Wash.-based St. Michael Medical Center experienced an October ransomware attack that exacerbated the hospital's short staffing issues that have been persisting for months, Kitsap Sun reported Dec. 2. The hospital was a...

Health IT Security, December 5, 2022 The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) released a joint cybersecurity advisory to warn critical infrastructure organizations of tactics, techniques, and procedures...

SC Media, December 5, 2022 With LockBit malware claiming attacks on defense giant Thales and German firm Continental, November closed with the distinction of having the second most reported ransomware attacks this year, according to a new report. Read full SC Media...

SC Media, December 5, 2022 CommonSpirit Health issued an update on the ransomware attack that brought down multiple hospitals across the country for more than a month, confirming the threat actors first gained network access weeks before the attack and patient data...

Gov Info Security, December 3, 2022 With the surge in ransomware and other major hacking incidents affecting third-party suppliers, it is more critical than ever for healthcare sector entities to diligently scrutinize threats and risks involving their vendors, says...

Bleeping Computer, December 2, 2022 This week's big news was the Colombia health system being severely disrupted by a ransomware attack on Keralty, one of the country's largest healthcare providers. Patients have had to wait upwards of twelve hours to receive care,...

Infosecurity, December 1, 2022 Colombian healthcare provider Keralty reported a ransomware attack on Sunday, which affected its systems as well as two of its subsidiaries: EPS Sanitas and Colsanitas. Read full Infosecurity article.

Des Moines Register, December 1, 2022 Personal information for patients of St. Michael Medical Center and other Virginia Mason Franciscan Health facilities may have been accessed in a cyberattack this fall, CommonSpirit Health acknowledged Thursday. Read full Des...

CISA, December 1, 2022 The Federal Bureau of Investigation (FBI) and CISA released a joint Cybersecurity Advisory (CSA) #StopRansomware: Cuba Ransomware to provide network defenders tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs)...

Bleeping Computer, November 30, 2022 The Keralty multinational healthcare organization suffered a RansomHouse ransomware attack on Sunday, disrupting the websites and operations of the company and its subsidiaries. Read full Bleeping Computer article.

Health IT Security, November 29, 2022 Ransomware attacks continue to be the most prolific threat that organizations face across all infrastructure verticals, with the healthcare sector as a top target, according to the GuidePoint Security Q3 GRIT Ransomware report....

Healthcare IT News, November 28, 2022 On 23 November, the All India Institute of Medical Sciences in New Delhi, India reported an IT outage due to a suspected ransomware attack. Read full Healthcare IT News article.

Healthcare Info Security, November 24, 2022 India’s premier healthcare institute reported a massive cyberattack on its servers on Wednesday. All patient care services were affected and were still operating manually on Thursday. Read full Healthcare Info Security...

CPO Magazine, November 22, 2022 Hive ransomware, one of the biggest ransomware-as-a-service (RaaS) strains circulating since 2021, has at this point brought in $100 million in ransom payments according to a new alert released by the Cybersecurity and Infrastructure...

HHS, November 21, 2022 HC3: Analyst Note. Report: 202211211700 Lorenz Ransomware Lorenz is human-operated ransomware that has been in operation for approximately two years. In that time, HC3 is aware of the compromise of healthcare and public sector targets. It is...

SC Media, November 21, 2022 The Department of Health and Human Services Cybersecurity Coordination Center is warning larger, enterprise healthcare organizations of the potential threat posed by the Lorenz ransomware threat group. The human-operated campaign is...

Becker's Health IT, November 21, 2022 From a third-party data breach to phishing schemes that compromised employee email accounts, seven health systems have been affected by a cybersecurity incident since Oct. 27. Read full Becker's Health IT article.

SC Media, November 21, 2022 The Department of Health and Human Services Cybersecurity Coordination Center is warning larger, enterprise healthcare organizations of the potential threat posed by the Lorenz ransomware threat group. Read full SC Media article.

Gov Info Security, November 18, 2022 As of this month, Hive actors - who follow a Ransomware-as-a-Service model - have hit more than 1,300 companies worldwide, collecting about $100 million in ransom payments, says a Thursday joint alert from the Cybersecurity and...

American Hospital Association, November 18, 2022 The FBI, Cybersecurity & Infrastructure Security Agency, and Department of Health and Human Services yesterday recommended actions to reduce the risk of compromise from Hive ransomware, which has victimized over...

Health IT Security, November 18, 2022 HHS, the Federal Bureau of Investigation (FBI), and the Cybersecurity and Infrastructure Security Agency (CISA) issued a joint cybersecurity advisory about Hive ransomware actors. The ransomware actors have been repeatedly...

SC Media, November 18, 2022 The Second International Counter Ransomware Initiative (CRI) Summit held recently at the White House turned the spotlight on the need to counter cybercriminal and other threat actors’ efforts to use the cryptocurrency ecosystem to garner...

SC Media, November 18, 2022 Another 15,000 patients have been added to the breach tally of the Eye Care Leaders ransomware attack from nearly one year ago. Read full SC Media article.

CISA, November 17, 2022 This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories include...

Health IT Security, November 17, 2022 Although security professionals may take holidays and weekends off, threat actors do not. New research from Cybereason found that holiday and weekend ransomware attacks resulted in greater revenue losses and lengthier recovery...

SC Media, November 17, 2022 A new joint alert details the spate of cyberattacks and data extortion efforts of the Hive ransomware group to support entities with identifying known IOCs and attack methods, with a particular focus on the health and public health sectors....

U.S. Government Accountability Office, November 16, 2022 Ransomware is software that makes data and systems unusable unless ransom payments are made. State, local, tribal, and territorial government organizations—including schools—have been targeted by ransomware....

Info Security Magazine, November 16, 2022 The infamous LockBit ransomware variant remained the most widespread in the third quarter of 2022, accounting for over a fifth (22%) of detections, according to a new report from Trellix. Read full Info Security Magazine...

Gov Info Security, November 15, 2022 The new Food and Drug Administration's Medical Device Cybersecurity Regional Incident Preparedness and Response Playbook is a refresh of guidance released in 2018. Read full Gov Info Security article.

Bank Info Security, November 15, 2022 Federal officials released updated guidance for preparing and responding to medical device cybersecurity incidents, including ransomware, as cyberattacks against the healthcare sector continue to surge. Read full Bank Info...

ZD Net, November 15, 2022 It's well known that ransomware attacks are one of the most significant cybersecurity challenges facing the world today, and often the financial impact on victims is the most obvious and most discussed consequence. But that's far from the...

Health IT Security, November 15, 2022 Numerous cloud attacks are successfully exploiting the healthcare sector for financial gain, according to a newly released 2022 Cloud Security Report by cybersecurity vendor Netwrix. Read full Health IT Security article.