As recently reported by HealthITSecurity, IBM Security’s 2023 Cost of a Data Breach Report revealed that the average cost of a healthcare data breach was almost $11 million in 2022, an $800,000 increase from the prior year and a 53% increase from 2020. The report further revealed that the global average cost of a
Cybersecurity
Healthcare Entities Warned About Increased Risks of North Korean State Sponsored Cyberattacks
On February 10, 2023, the United States National Security Agency (NSA), the U.S. Federal Bureau of Investigation (FBI), the U.S. Cybersecurity and Infrastructure Security Agency (CISA), the U.S. Department of Health and Human Services (HHS), the Republic of Korea (ROK) National Intelligence Service (NIS), and the ROK Defense Security Agency (DSA) issued a joint Cybersecurity…
Federal Government Takes Action to Begin Ensuring Cybersecurity in Medical Devices
As reported this past week by GovInfoSecurity, the Consolidated Appropriations Act of 2023, signed into law in late December 2022, included a key provision to help ensure the cybersecurity of medical devices by their manufacturers. GovInfoSecurity interviewed Dr. Suzanne Schwartz, director of the FDA’s Office of Strategic Partnerships and Technology Innovation, Center for Devices…
OCR Reminds Providers of the Significant Threat of Cyber-Attacks and Provides Helpful Overview of Key Security Factors to Keep in Mind
In recognition of National Cybersecurity Awareness Month, the Office of Civil Rights (OCR) issued its October 2022 Cybersecurity Newsletter addressing best practices and tips for compliance with HIPAA’s Security Rule. The Newsletter discussed the ever-increasing need for members of the healthcare industry to be vigilant in their practices, as research shows a 42% increase in…
A Cautionary Tale: Federal Court Ruling in Cyber Insurance Coverage Dispute Underscores Importance of Understanding Policy Provisions Related to Fraud Claims
On August 12, 2022, the U.S. District Court for the District of Minnesota entered an order in favor of Travelers Casualty and Surety Company of America, dismissing the complaint filed by SJ Computers, LLC, a Minnesota-based computer store. The case should serve as a cautionary tale to businesses across the country, underscoring the critical need…
Recent FBI and DOJ Action Against Foreign Hackers Highlights Risk and Response Protocols for U.S. Hospitals
As reported in mid-July by the Associated Press, the federal government – the FBI and Justice Department specifically – recently upended the activities of a North Korean government sponsored hacking group that has targeted U.S. hospitals. Following a cyberattack last year, a Kansas hospital contacted the FBI after paying a ransom to cybercriminals that…
Cyberattack Threats Represent Significant Risk for Hospitals and Healthcare Entities
In light of the ongoing conflict in Ukraine and the consequential global impacts and destabilization, the Department of Health and Human Services (HHS) continues to caution about escalating threats of cyberattacks. In early March 2022, HHS issued a bulletin warning those in the U.S. healthcare sector of the potential threats of cyberattacks by Russia and…