The Office for Civil Rights Should Enhance Its HIPAA Audit Program to Enforce HIPAA Requirements and Improve the Protection of Electronic Protected Health Information

Issued on 11/21/2024 | Posted on 11/25/2024 | Report number: A-18-21-08014 To cut to the chase: What OIG Found OCR fulfilled its requirement under the HITECH Act to perform periodic HIPAA audits. However: OCR’s HIPAA audit implementation was … Continue reading The Office for Civil Rights Should Enhance Its HIPAA Audit Program to Enforce HIPAA Requirements and Improve the Protection of Electronic Protected Health Information

The Office for Civil Rights Should Enhance Its HIPAA Audit Program to Enforce HIPAA Requirements and Improve the Protection of Electronic Protected Health Information

Issued on 11/21/2024 | Posted on 11/25/2024 | Report number: A-18-21-08014 To cut to the chase: What OIG Found OCR fulfilled its requirement under the HITECH Act to perform periodic HIPAA audits. However: OCR’s HIPAA audit implementation was … Continue reading The Office for Civil Rights Should Enhance Its HIPAA Audit Program to Enforce HIPAA Requirements and Improve the Protection of Electronic Protected Health Information

Rockford Gastroenterology Associates notifies 147,253 patients of December 2023 cyberattack

In December 2023, DataBreaches added Rockford Gastroenterology Associates (“RGA”) to a list of possible ransomware victims after seeing a listing for them on the leak site for threat actors known as RA World. However, it wasn’t until … Continue reading Rockford Gastroenterology Associates notifies 147,253 patients of December 2023 cyberattack

Ransomware Group Cooperation: A Growing Challenge in the Fight Against Cybercrime

Marco A. De Felice (aka @amvinfe) of SuspectFile and DataBreaches have often shared information with each other about threat actors or incidents, including what may appear to be second attacks or maybe just a re-listing of a previous attack. He has rec… Continue reading Ransomware Group Cooperation: A Growing Challenge in the Fight Against Cybercrime

Attackers Targeting VPNs Account for 28.7 Percent of Ransomware Incidents in Q3 According to Corvus Insurance Cyber Threat Report

A press release from Corvus Insurance has some statistics worth mulling over:  Corvus Insurance, a wholly owned subsidiary of The Travelers Companies, Inc., today released its Q3 2024 Cyber Threat Report, The Ransomware Ecosystem is Increasingly Distri… Continue reading Attackers Targeting VPNs Account for 28.7 Percent of Ransomware Incidents in Q3 According to Corvus Insurance Cyber Threat Report

Hibernation is Over? Akira Ransomware: Published Over 30 New Victims on their DLS

Adi Bleih reports: The Akira ransomware group has been active since March 2023, targeting diverse industries across North America, the UK, and Australia. Operating as a Ransomware-as-a-Service (RaaS) model, Akira employs a double-extortion strategy by … Continue reading Hibernation is Over? Akira Ransomware: Published Over 30 New Victims on their DLS

Thames Water’s IT ‘falling apart’ and is hit by cyber-attacks, sources claim

Anna Isaac reports: “The software we use is older than me, and some of the hardware is older than my dad,” says Siddharth*. He is one of a team fighting a daily battle to sustain ancient IT infrastructure at Thames Water. Sometimes the defences are bre… Continue reading Thames Water’s IT ‘falling apart’ and is hit by cyber-attacks, sources claim

NIST publishes guide on due diligence for cyber supply chain risk management

Add this to the list of things I missed last week.  Nathan Salminen and Ryan Campbell write: Last week, the National Institute of Standards and Technology (NIST) released a “quick-start guide” to facilitate due diligence assessments from a cyber supply… Continue reading NIST publishes guide on due diligence for cyber supply chain risk management

Remarks at a UN Security Council Briefing on Ransomware Attacks against Hospitals and Other Healthcare Facilities and Services

Anne Neuberger Deputy National Security Advisor of the United States New York, New York November 8, 2024 AS DELIVERED Thank you, Mr. President. Good morning. My name is Anne Neuberger and since 2021, I have had the privilege of coordinating the United … Continue reading Remarks at a UN Security Council Briefing on Ransomware Attacks against Hospitals and Other Healthcare Facilities and Services