Boston Children’s Health Physicians (BHCP), part of the Boston Childrenâs Hospital network of care, announced that a cyberattack on its IT vendor occurred on September 6, resulting in exfiltrated files after unauthorized activity on its network. Those impacted include patients, current and former employees, and guarantors. Exposed data includes full names, SSNs, Addresses, DOBs, driverâs license numbers, MRNs, health insurance data, billing and treatment information. BHCP confirmed that the attack did not impact its electronic medical record systems, as they are hosted on a separate network. The BianLian ransomware gang claimed the cyberattack earlier this week and said that unless a ransom is paid, they will leak stolen files that allegedly include finance and HR data, email correspondence, health and insurance records, and data related to children.
Steve Hahn, VP of Americas, BullWall had this to say:
   “There is a reason HIPPA has strict compliance guidelines and cyber security is supremely important to the security of hospital records. Ransomware attacks on hospitals continue to rise, and are a serious threat to public health and safety. These attacks not only disrupt the delivery of essential medical services, but always compromise the security of sensitive patient information.
  âThe impact of these attacks can be devastating. They can leave patients and their families open to new harms at what is likely the most vulnerable point in their lives, and can leave institutions struggling to preserve patient care, protect their data and regain control of their systems. Whether a ransom is paid or not, the costs in terms of potential patient and caregiver impacts (as well as dollars) can severely impact these already struggling patients and their caregiving institutions. Itâs particularly egregious that this attack focuses on clinicians serving the youngest, most vulnerable of patients.
   âHealthcare providers MUST expand beyond mere alerting, and institute actual ransomware resilience that can immediately contain an attack and proactively prevent server intrusion. They need MFA to every server, every session, working towards a zero-trust environment and, most importantly, they need containment and recovery strategies in place. In the same way that defense experts âwar gameâ physical attacks, knowing that solely focusing on preventing them isnât viable, our major healthcare institutions must move to protect their critical infrastructure the patients and caregivers in their charge. This means operating from the vantage point that ransomware attacks are not a case of âifâ but âwhenâ â and implement resilience against ransomware to immediately thwart attacks and attempts at propagation, encryption and exfiltration.â
Once again healthcare is the target of a cyberattack. We keep talking about the fact that this is a sector that needs to put more focus on making sure that this isn’t something that keeps being repeated. I’m personally wondering when we will see that actually start to happen.
Bluesky Adds 500,000 New Users Because Of Elon Musk’s Stupidity
Posted in Commentary with tags Bluesky, Twitter on October 18, 2024 by itnerdI’ve used a term called FAAFO in stories related to the stupidity of Elon Musk and how he runs Twitter. And a few days ago I posted two stories related his latest stupid moves. And as a result of those stupid moves, Elon is now in the find out phase. According to this, Bluesky has had an influx of new users:
You have to wonder if Elon is actually trying to turn Twitter into a profitable company anymore because driving away users from a platform that is dependent on users doesn’t seem like a winning strategy to me. Is Elon so focused on his goal of making Twitter the world’s town square shaped to match his personal views that nothing else matters? Regardless, Elon’s latest stupid idea has now resulted in him finding out how stupid his ideas are.
Leave a comment »