Following Amazon's acquisition of One Medical, a primary-care service, elderly patients have increasingly been routed to a call center staffed largely by inadequately trained contractors, resulting in concerning lapses in handling urgent medical symptoms. Internal documents reveal multiple instances where urgent cases, such as blood clots and severe pain, were not escalated appropriately. With this new system in place, the frequency of such errors has risen notably, raising alarms about patient safety. Despite Amazon's claims of improving healthcare accessibility and maintaining quality, the transition has led to patient dissatisfaction and significant concerns regarding the adequacy of care provided.

Leaked documents reveal patient safety issues at Amazon’s One Medical washingtonpost.com

Mandiant has detected a threat campaign, UNC5537, targeting Snowflake database instances with aims of data theft and extortion. Rather than breaching Snowflake's enterprise environment, the attackers leveraged compromised customer credentials, often obtained through infostealer malware, to access and exfiltrate significant volumes of data from affected accounts. These compromised accounts lacked multi-factor authentication and had not updated credentials over years. Mandiant has identified hundreds of affected organizations and, in collaboration with Snowflake, has been notifying potential victims while coordinating with law enforcement. The threat group has used various infostealer malware variants and stored stolen data across several VPS providers and MEGA for further extortion and sale on cybercriminal forums. The campaign highlights crucial gaps in credential security practices and the importance of multi-factor authentication and limiting access to trusted locations.

UNC5537 Targets Snowflake Customer Instances for Data Theft and Extortion | Google Cloud Blog cloud.google.com

Ascension has reported progress in their investigation and recovery efforts following a cybersecurity incident, assisted by third-party experts. Evidence indicates that attackers accessed files from seven of approximately 25,000 file servers used for routine tasks by associates, potentially involving Protected Health Information (PHI) and Personally Identifiable Information (PII) for certain individuals. Access was gained through an inadvertently downloaded malicious file. No data has been taken from Electronic Health Records (EHR) or clinical systems. The investigation is ongoing, and a full review of affected files is required. Ascension is offering complimentary credit monitoring and identity theft protection services to any patient or associate concerned about their data. For more information, call the dedicated call center at 1-888-498-8066. Once the analysis is complete, affected individuals will be notified as per legal requirements. Ascension regrets any inconvenience caused.

Ascension: Progress in Cybersecurity Investigation Reveals Limited Data Breach publication

**Cone Health's $100 Million Financial Transformation**

Cone Health, a North Carolina-based health system, achieved a $100 million financial turnaround by reducing contract labor by 48%, hiring international nurses, and creating a systemwide float pool and internal travel agency. Improvements included addressing workplace safety and establishing a value-based care institute alongside a partnership with Palantir to automate staff scheduling. These changes cut $60 million in spending last year, with another $40 million reduction underway. Cone Health plans to invest $150 million in community health initiatives over the next five years, highlighting its commitment to financial strength and community service.

Cone Health executes $100M turnaround Becker's Hospital Review