Healthcare company Ascension has suffered a data breach from May 2024, impacting over 5.6 million patients and employees. A social engineering email from a ransomware gang led to an employee downloading malware, enabling data theft. The breach involves highly sensitive data, including medical records, and personal and payment information. Although patient data was involved, it’s reported that electronic health records remain secure. Ascension have reached out to those affected and have offered two years of identity theft protection services.
Healthcare organizations: Don’t wait for legislation to adopt cybersecurity best practices
A bipartisan group in the US Senate proposed a bill in late 2024 to impose new cybersecurity requirements on healthcare organizations. The Health Care Cybersecurity
