MediSecure, a provider of a digital prescription platform, is the latest in Australia to fall victim to a major ransomware attack by unidentified actors.
On Thursday, 16 May, the company reported a cyber attack "impacting the personal and health information of individuals" in its system. The company's website and phone lines have since gone offline.
"While we continue to gather more information...
The Department of Health and Social Care (DHSC) has estimated that the WannaCry attack cost the NHS £92m in "lost output of patient care" and additional IT support provided to organisations affected during and in the aftermath of the incident.
The May 2017 cyber attack disrupted operations at approximately one-third of hospital trusts and around eight percent of GP practices, with 19,000...
More than four months have passed since the European Union began enforcing its General Data Protection Regulation (GDPR). But nearly one-fifth of organizations aren't confident they could pass their first GDPR audit, according to a recent survey from cybersecurity company Imperva.
Compliance continues to be a point of concern, especially with the recent fine from the UK Information Commissioner's...
The UK’s Information Commissioner’s Office (ICO) has fined Bupa £175,000 after an investigation found the health insurer failed to have "effective security measures in place to protect customers' personal information" in the wake of an incident that saw an employee extract data of 547,000 global customers during January and March 2017 and put it up for sale on the dark web.
The employee accessed...
Winston Armstrong, CISO at the San Diego Super Computer Center, and Sandeep Chandra, director of health cyberinfrastructure at the same center, both tout the benefits of a hybrid cloud with medical devices in terms of security as well as analytics. But key safeguards are needed to keep it secure.
Following prompting from security and IT firm Rapid7, Johnson & Johnson, through its subsidiary Animas, has reached out to users of the Animas OneTouch Ping Insulin Infusion Pump to inform them about security vulnerabilities and how to mitigate them. According to Rapid7, because the communication with the insulin pump is not encrypted, an attacker could theoretically trigger unauthorized...