This research uncovers a significant data breach involving cloud storage provider Snowflake. A threat actor behind this breach revealed that they used stolen credentials to access a Snowflake employee's ServiceNow account, bypassing security measures and generating session tokens to exfiltrate a large amount of data. The breach, which impacted approximately 400 companies including customers of Ticketmaster and Santander Bank, has led to data being sold on cybercrime forums. Documents provided by the threat actor confirmed the extent of their access. The actor attempted to blackmail Snowflake for $20 million, but the company was unresponsive. Snowflake is investigating the breach, which was part of a broader pattern of identity-based cyberattacks. Hudson Rock continues to monitor and report on the developments of this case.

Snowflake, Cloud Storage Giant, Suffers Massive Breach: Hacker Confirms to Hudson Rock Access Through Infostealer Infection Hudson Rock

The Department of Health and Human Services (HHS) announced that hospitals and health systems impacted by the February 22 Change Healthcare cyberattack can require UnitedHealth Group to notify patients if their data was compromised. HHS’ Office for Civil Rights Director Melanie Fontes Rainer emphasized the importance of prioritizing HIPAA breach notifications. The American Hospital Association (AHA) expressed satisfaction with the decision, noting it aligns with their earlier request and helps avoid confusion and additional costs for hospitals. According to updated FAQs, if Change Healthcare handles the breach notifications as per HIPAA and HITECH standards, the affected entities will have no further notification obligations. UHG CEO Andrew Witty had previously agreed to this approach during May hearings with Senate and House committees.

HHS says hospitals impacted by Change Healthcare cyberattack can delegate breach notifications to UnitedHealth Group | AHA News aha.org

Healthcare delivery organizations (HDOs) are increasingly vulnerable to cybersecurity threats, with a 40% rise in reported breaches noted early this year, causing significant financial loss and impacting care delivery. High-profile ransomware attacks have crippled organizations like the University of Vermont Medical Center and Scripps, incurring million-dollar losses. Studies indicate that such cyber incidents jeopardize patient safety by delaying procedures and increasing mortality rates. To combat this, HDOs must strengthen their cybersecurity foundation through three main strategies: formalizing cybersecurity governance within a standing committee, establishing an integrated cyber and enterprise risk program, and measuring the effectiveness of their cybersecurity initiatives. These steps emphasize board-level accountability and require comprehensive oversight to ensure cybersecurity risks are effectively managed across all aspects of their operations.

Council Post: Healthcare Boards Must Be Accountable For Cybersecurity Forbes

The article discusses the increasing tendency of patients, particularly those who have experienced multiple miscarriages, to conduct their own research online and gather information from various sources before consulting their doctors. This self-gathered information, often compiled from Google, WebMD, support groups, and personal networks, can result in a substantial amount of data that patients bring to their medical appointments. The article underscores the need for healthcare providers to adapt by finding ways to effectively integrate patient-led research into the clinical decision-making process, fostering a collaborative atmosphere where patients and doctors work together for the best outcomes.

When Patients Do Their Own Research The Atlantic