Drex dives into a Connecticut health center is notifying over a million patients of a data breach, Maryland’s Frederick Health is battling a ransomware attack disrupting emergency services, and the New York Blood Center is dealing with a cyberattack eerily similar to previous breaches. As cybercriminals increasingly target critical healthcare infrastructure, Drex discusses the urgent need for supply chain redundancy and proactive risk management.
Remember, Stay a Little Paranoid
Donate: Alex’s Lemonade Stand: Foundation for Childhood Cancer
This transcription is provided by artificial intelligence. We believe in technology but understand that even the smartest robots can sometimes get speech recognition wrong.
Everyone, I'm Drex and this is the two minute drill where I cover three hot security stories twice a week, all part of the 229 cyber and risk community here at this week health. Today's two minute drill is brought to you by Intraprise Health, a health catalyst company. You need to get all your leaders on the same page when prioritizing risk.
team in person at Vive booth:Community Health Center in Connecticut is in the process of notifying more than a million patients that their data has likely been stolen by cyber thugs in a January cyber event where no systems were locked. but the data was stolen. Hackers were able to gain access to CHC systems and steal data that included dates of birth, test results, social security numbers, and other important information.
That comes on the heels of two other healthcare delivery organizations who also reported data breaches recently. Maryland's Frederick Health has ransomware attack which resulted in emergency room diversions. And while facilities are open, they're reporting delays. They're working closely with third party cyber experts to restore systems and figure out what happened.
And, New York Blood Center, with divisions serving hospitals in several states, including New York and New Jersey and Nebraska and Missouri, They say they're dealing with their own ransomware attack. This event is eerily similar to last summer's ransomware attacks on Florida's OneBlood and April's attack on Octopharma Plasma and a June ransomware attack on British company Synovus, which disrupted care across the National Health Service and triggered a nationwide shortage.
of typo blood in the UK. Cyber criminals target blood supply organizations as a way to strike at the heart of the broader healthcare system, creating a sense of urgency that makes paying the ransom demand more likely. For hospitals, it continues to be important to identify these single threaded supply chain partners.
Not just where blood's a concern, but with everything. When you find those single threaded vendors in that supply chain, you got to look for ways to build redundancy across multiple suppliers. All those stories and a whole lot more are at this week health dot com slash news. Today's 2 Minute Drill is brought to you by Intraprise Health, a health catalyst company.
Did you know that with Blueprint, you can pull risk data from all your tools into a single unified risk management platform? Then you can prioritize all the risk, assign the work, track exceptions, and drive accountability. All in one place. That's Blueprint. Check it out at Interprise Health. com or come get a demo.
That's it for today's two minute drill. Thanks for being here. Stay a little paranoid. I'll see you around campus.