Healthcare and Pharmaceutical


  • NHS staff issued with fresh cyber security guidance

    September 23, 2019

    NHS Digital has launched an organisation-wide cyber security campaign to provide staff with the most up-to-date guidance on how to avoid and mitigate potential cyber threats and data breaches. With the NHS being one of the biggest direct and indirect targets for cyber criminals, NHS Digital’s ‘Keep I.T. Confidential‘ campaign is hoping to educate the workforce on the ...

  • Ransomware hits hundreds of dentist offices in the US

    August 29, 2019

    Hundreds of dental practice offices in the US have had their computers infected with ransomware this week, ZDNet has learned from a source. The incident is another case of a ransomware gang compromising a software provider and using its product to deploy ransomware on customers’ systems. In this case, the software providers are The Digital Dental Record ...

  • NHS Digital expands cyber security toolkit with new free services for trusts

    August 13, 2019

    NHS organisations will be offered free cyber security services from NHS Digital’s Data Security Centre through a new agreement with Accenture. NHS Digital will provide hospital trusts and other NHS care providers with a range of new perimeter security services designed to decrease organisations’ vulnerability to cyber-attacks, including network intrusion detection and prevention capabilities, web content ...

  • UK Public sector workers to receive biggest pay rise in six years

    July 19, 2019

    Public sector workers including teachers, soldiers and police officers will reportedly be given pay rises above inflation as part of new government plans. Theresa May is expected to make the announcement next week as one of her final acts as prime minister, according to The Times. The proposed pay rise, which will come at a cost of ...

  • Bug in Anesthesia Machines Allows Changing Gas Mix Levels

    July 9, 2019

    A vulnerability in the firmware of some anesthesia machines used in hospitals could be abused to change normal functionality up to the point of adjusting the level of inhalational substances. The flaw affects GE Aestiva and GE Aespire anesthesia systems, models 7100 and 7900, from GE Healthcare (part of General Electric Company) and permits sending them commands ...

  • NHS must spend now to prevent devastation of ‘WannaCry 2.0’

    July 4, 2019

    The government must urgently pump more money into cyber securitywithin the NHS to plug gaps that render the healthcare system vulnerable to an attack more destructive than the WannaCry saga. Although many positive steps have been taken since the 2017 attack, a lack of investment, a deficit of skills and awareness, and the use of out-dated systems are ...

  • MongoDB Leak Exposed Millions of Medical Insurance Records

    June 28, 2019

    Millions of records containing personal information and medical insurance data were exposed by a database belonging to insurance marketing website MedicareSupplement.com. An online database belonging to insurance marketing website MedicareSupplement.com was found exposing more than 5 million records with personal information. MedicareSupplement.com is a U.S.-based marketing site that allows users to find supplemental medical insurance available in their ...

  • AMCA Healthcare Hack Widens Again, Reaching 20.1M Victims

    June 5, 2019

    OPKO subsidiary BioReference joins Quest and LabCorp in the supply-chain incident. The hack of the American Medical Collection Agency (AMCA), a third-party bill collection vendor, continues to expand, now impacting 20.1 million patients across three laboratory services providers. In the wake of revelations that the personal data of 12 million patients from Quest Diagnostics had been potentially compromised by ...

  • Massive Quest Diagnostics data breach impacts 12 million patients

    June 4, 2019

    A massive data breach has struck Quest Diagnostics and the information of up to 11.9 million patients has potentially been compromised. On Monday, the US clinical laboratory said that American Medical Collection Agency (AMCA), a billing collections provider that works with Quest, informed the company that an unauthorized user had managed to obtain access to AMCA systems. Through the ...

  • Pharma-testing biz Eurofins Scientific says it fell victim to ‘new version’ of malware

    June 3, 2019

    Bio-analytical testing biz Eurofins Scientific today admitted it was the subject of a ransomware attack at the weekend. The Paris Stock Exchange-listed group operates in food, environmental, pharmaceutical and cosmetics product testing. It has 800 labs spread across 47 countries. The company said in a statement that its tech security team had detected the malware. Resident techies and a team ...

  • Insecure Database Exposes 800,000 Singapore Blood Donors

    March 15, 2019

    The personal information of 808,201 blood donors who registered to donate since 1986 in Singapore was exposed after the database which contained it was left unprotected on an Internet-facing server for more than two months. According to The Straits Times who first reported the data leak incident, Singapore’s Health Sciences Authority (HSA) received the initial report on March 13 from the security expert ...

  • Ransomware encrypts Australian cardiac clinic’s patient files

    February 21, 2019

    Employees of Melbourne Heart Group in Malvern, Australia, have been unable to access patients’ medical records following a January ransomware attack that encrypted the health care provider’s files. The cardiology clinic disclosed the incident today on its website’s home page. “We have been assured that no patient’s privacy has been compromised in any way,” the statement reads. ...

  • 2.7 Million Health-Related Calls, Sensitive Info Exposed for Six Years

    February 18, 2019

    A server used to store real-time recordings of phone calls made to the 1177 Swedish Healthcare Guide service for health care information was found completely exposed to the Internet, with no user or password to protect it. As IDG’s Lars Dobos says, the millions of call recordings were left on an open web server that could be accessed with no ...

  • LabKey Vulnerabilities Threaten Medical Research Data

    January 25, 2019

    LabKey Server version 18.3.0-61806.763, released on January 16, patches all three issues, so users should update as soon as possible. A trio of vulnerabilities in a popular open source medical data collaboration tool leaves important healthcare research data and potentially subject information open to multiple cross site scripting (XSS) attacks. The flaws are serious as they ...

  • UK unveils plans to fight threat of ‘antibiotic apocalypse’

    January 24, 2019

    The UK will cut drug-resistant infections by 10% and reduce human antibiotic use by 15% over the next five years as part of a new strategy to tackle so-called superbugs. Antimicrobial resistance (AMR) is considered one of the greatest threats to human health, with predictions it could become a bigger killer than cancer if it not ...

  • Cumbria health trust hit by 147 cyber attacks in five years

    January 19, 2019

    The NHS in Cumbria has been hit by more than 150 cyber attacks in five years, the BBC can reveal. Of these, 147 were directed at University Hospitals of Morecambe Bay NHS Trust (UHMBT), which runs hospitals in Barrow, Kendal, Morecambe and Lancaster. The trust said it had spent £29,600 in 2017 dealing with the effects of ...

  • NHS Digital’s first cyber security chief to resign after three months in role

    January 9, 2019

    NHS Digital’s first chief information security officer, a role established after the WannaCry ransomware attack, has resigned after just three months in the role. In a memo to staff at NHS Digital, seen by Digital Health News, it was announced that Robert Coles would be stepping down from the role for personal reasons. Coles, the former security chief at ...

  • 25% of NHS trusts have zilch, zip, zero staff who are versed in security

    December 11, 2018

    A quarter of NHS trusts in the UK responding to a Freedom of Information request have no staff with security qualifications, despite some employing up to 16,000 people. On average, trusts employ one qualified security professional for every 2,582 employees, according to Freedom of Information requests submitted by penetration testing firm Redscan. Trusts were asked about their ...

  • Healthcare billing biz AccuDoc ‘fesses up to breach that blabbed 2.65m people’s data

    November 29, 2018

    Miscreants gained access to US healthcare billing vendor AccuDoc Solutions’ database for about a week in September, exposing the data of at least 2.65 million people. North Carolina-based Atrium Health, a customer of AccuDoc Solutions, this week said it had been affected by the breach. The firm operates 44 hospitals across North Carolina, South Carolina and ...

  • Rethinking Cybersecurity in the healthcare industry

    November 25, 2018

    The sector will always be an ideal target for cybercriminals, and steps are needed in order to protect information One thousand dollars. That is the current potential value for a patient healthcare record on the robust and largely unpoliced Dark Web black market. With the mean size of data breaches in the healthcare industry at roughly ...