In light of the ongoing conflict in Ukraine and the consequential global impacts and destabilization, the Department of Health and Human Services (HHS) continues to caution about escalating threats of cyberattacks. In early March 2022, HHS issued a bulletin warning those in the U.S. healthcare sector of the potential threats of cyberattacks by Russia and those aligned with it.

In particular, HHS warned of threats by one of the most prominent cybercriminal groups to publicly support Russia, the Conti ransomware operators. Historically, this group has been known to target U.S. healthcare organizations with threats including Managed Service Provider compromises, big game hunting, multi-stage attacks (leveraging other malpractice variants as part of the attack), and double and triple extortion (data theft combined with a ransomware attack). Healthcare providers of all sizes and types should therefore continue to be familiar with the various types of potential attacks, which are discussed in the HHS bulletin.

To assist our healthcare sector clients, we have previously written about steps taken by the federal government to help private entities stay vigilant, including the passage of the Strengthening American Cybersecurity Act and the Statement by President Biden on our Nation’s Cybersecurity. Entities in the healthcare sector would be well advised to remain on guard and continue to implement protocols and other measures to protect their organizations from cyberattacks.

Print:
Email this postTweet this postLike this postShare this post on LinkedIn
Photo of John W. Kaveney John W. Kaveney

Partner, Healthcare and Litigation Departments

Mr. Kaveney focuses his practice in the area of healthcare law, representing a range of clients that includes for-profit and non-profit hospitals and health systems, academic medical centers, individual physicians and physician groups, ambulatory surgery centers, ancillary service…

Partner, Healthcare and Litigation Departments

Mr. Kaveney focuses his practice in the area of healthcare law, representing a range of clients that includes for-profit and non-profit hospitals and health systems, academic medical centers, individual physicians and physician groups, ambulatory surgery centers, ancillary service providers, medical billing companies, skilled nursing and rehabilitation facilities, behavioral health centers and pharmacies.

His practice in the healthcare field encompasses advising healthcare clients on corporate compliance matters, including the implementation of new, and the assessment of existing, corporate compliance programs. He also assists healthcare clients with compliance audits and investigations, as well as guiding clients through the self-disclosure and repayment processes. Finally, he provides general legal advice concerning compliance and regulatory matters under state and federal healthcare laws.

In the area of information privacy and data security, Mr. Kaveney advises healthcare clients on issues arising under the Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and Clinical Health Act (HITECH). This includes the implementation and assessment of privacy and security policies and procedures to ensure the proper protection and utilization of protected health information both by healthcare providers and the business associates with which they contract. In addition, he represents healthcare clients in investigating, reporting, and remediating information breaches and the liability such breaches create under various information privacy and security laws.

Additionally, Mr. Kaveney provides counsel on Medicaid and Medicare reimbursement matters before the Division of Medical Assistance and Health Services and the Provider Reimbursement Review Board, as well as assisting clients in civil litigation and with professional licensing and medical staffing concerns.

Contact information:

jkaveney@greenbaumlaw.com | 973.577.1796 | vCard | LinkedIn

For more information visit the Greenbaum, Rowe, Smith & Davis LLP website.

Photo of Meredith C. Sherman Meredith C. Sherman

Partner, Litigation Department

Ms. Sherman concentrates her practice in commercial litigation with an emphasis on complex commercial disputes. She has more than a decade of experience representing corporations and financial institutions, with a particular expertise in securities class actions and shareholder derivative lawsuits.…

Partner, Litigation Department

Ms. Sherman concentrates her practice in commercial litigation with an emphasis on complex commercial disputes. She has more than a decade of experience representing corporations and financial institutions, with a particular expertise in securities class actions and shareholder derivative lawsuits.

Ms. Sherman has assisted numerous banking clients in investigations related to global regulatory sanctions, anti-money laundering compliance, alleged manipulation of benchmark interest rates, and in a broad range of government inquiries and subpoena responses.

Ms. Sherman has also handled investigations and commercial and employment disputes for clients in the manufacturing, pharmaceutical, and higher education industries. She has also counseled clients on data privacy issues.

Prior to joining the firm, Ms. Sherman was a litigation associate at a prominent national law firm.

Contact information:

msherman@greenbaumlaw.com | 732.476.2672 | vCard  | LinkedIn

For more information visit the Greenbaum, Rowe, Smith & Davis LLP website.