Information security leaders from Pittsburgh-based UPMC and Burlington, Mass.-based Tufts Medicine told Becker's they're fighting data breaches by working together.

OU Health is notifying patients that some of their protected health information may have been compromised after an employee's laptop was stolen. 

Scott Dresen, chief information security officer of dually headquartered Grand Rapids and Southfield, Mich.-based Corewell Health, said the federal government must help healthcare organizations defend against cyberattacks from nation-state actors and organized crime groups, BankInfoSecurity reported March 16. 

Two Arkansas health systems face a total of eight federal lawsuits over recent cyberattacks, Arkansas Business reported March 20.

DDoS attacks in healthcare are increasing with healthcare organizations suffering between 40 to 60 attacks daily in February, according to a March 17 blog post from Microsoft. 

The Health Sector Cybersecurity Coordination Center (HC3) is warning the healthcare sector of the threat posed by Black Basta, a Russian-speaking ransomware-as-a-service group targeting U.S. healthcare institutions.

The HHS Office of Civil Rights is asking to nearly double its budget in fiscal 2024, to $78 million, to deal with the increasing number of healthcare data breaches, its director told Politico.

A woman alleges that a contract employee from Martinez, Calif.-based Contra Costa Regional Medical Center gained access to her medical records and posted them to a Facebook account, The Hill reported March 16. 

UC San Diego Health's technology vendor Solv Health transmitted patients' confidential information to third-party service providers. 

Berlin, Md.-based Atlantic General Hospital did not accommodate hackers' demands during a recent ransomware attack, The Dispatch reported.

Rural hospitals need more government funding to deal with the increase in healthcare ransomware attacks and to hire more cybersecurity professionals, IT security leaders told Congress, CyberScoop reported March 16.

South Bend, Ind.-based Beacon Health System is notifying 3,117 patients that some of their personal information may have been accessed by an unauthorized employee who viewed patient records outside the scope of their job duties. 

More than 4.2 million patients were affected in the largest data healthcare data breach reported so far in 2023, HIPAA Journal reported March 15.

Data exfiltration was a factor in 70 percent of ransomware incidents affecting healthcare organizations, a March 9 brief from HHS' Health Sector Cybersecurity Coordination Center found.

San Bernardino, Calif.-based Regal Medical Group is facing 11 lawsuits for a December ransomware attack that compromised the protected health information of 3.3 million patients, Bloomberg Law reported March 14. 

Livonia, Mich.-based Trinity Health filed a data breach notice with the Massachusetts attorney general March 9 after it learned that some patient information was compromised as a result of unauthorized access, JDSupra reported March 14.  

Medical device and software company Zoll Medical disclosed that it suffered a data breach affecting 1,004,443 people, according to a March 10 data breach notification with the Maine Office of Attorney General.

A Lehigh Valley Health Network patient whose nude photos were posted to the dark web by a Russian ransomware gang has sued the Allentown, Pa.-based health system, The (Allentown) Morning Call reported.

Boston-based Codman Square Health Center's systems were encrypted by ransomware, causing the protected health information of 10,161 patients to be compromised.

The Hawaii Department of Health found that an unauthorized individual used an account belonging to a former medical certifier at a Hawaii hospital to access the electronic death registry system.