Another clinical lab ensnared in the AMCA data breach has come forward. Clinical Pathology Laboratories (CPL) says 2.2 million patients may have had their names, addresses, phone numbers, dates of birth, dates of service, balance information, and treatment provider information stolen in the previously reported breach.
While many in the healthcare industry have seen the benefits of outsourcing tasks to third-party vendors, a new study cautions that those benefits could come with significant risks.
While data breaches cost providers $2.9 million in recovery, new data from Ponemon Institute and Censinet shows managing vendor risk is far most costly at $3.8 million per provider annually.
Along with ransomware’s resurgence in financial impact and the rise of cryptojacking, attacks via third parties also became more prevalent in 2018, OTA found. The most notable such attack was Magecart, which infected the payment forms on more than 6,400 e-commerce sites worldwide.
Oregon Senate Bill 684 extends breach notification obligations to “vendors,” defined as entities who contract with a covered entity to “maintain, store, manage, process or otherwise access personal information.”
This third-party data breach exposed 85.4 GB of security logs from Pyramid Hotel Group.
A day after Quest Diagnostics announced 12 million patients were affected by a data breach, another medical testing company says its patients’ data was also compromised.
A hacker gained access to American Medical Collection Agency’s system, which contained a trove of personal information from its clients, including nearly 12 million patients of Quest Diagnostics.
After outsourcing giant Wipro suffered a phishing incident, attackers used its email system to target the company’s customers. The breach demonstrates the dangers of supply chain and third-party risk.
In its latest assessment of the state of healthcare cybersecurity, CynergisTek researchers found that vendors working with health providers account for some of the largest data breaches to date.