Examines how organizations maintain essential operations during and after cybersecurity incidents. Topics include business continuity planning, disaster recovery integration, risk assessments, communication strategies, and ensuring resilience against prolonged disruptions.
posts
In February 2024, Change Healthcare — a subsidiary processing roughly one-third of all U.S. medical claims — was hit by the ALPHV/BlackCat ransomware group. The attack disrupted pharmacy operations nationwide for weeks, cost UnitedHealth Group an estimated $872 million in the first quarter alone, and exposed the personal health data
In February 2024, Change Healthcare — the largest medical claims processor in the United States — was hit by the ALPHV/BlackCat ransomware group. The attack disrupted billing systems for hospitals and pharmacies nationwide for weeks. UnitedHealth Group later confirmed the breach affected approximately 100 million individuals. If you think your organization
The Attack That Cost a Hospital $67 Million In May 2024, Ascension Healthcare disclosed a ransomware attack that disrupted operations across 140 hospitals. Ambulances were diverted. Clinicians reverted to paper charts. The financial impact reportedly reached $1.8 billion in total losses for the fiscal year, with the cyber incident
The Breach That Didn't Have to Be a Disaster In early 2024, Change Healthcare suffered a ransomware attack that disrupted pharmacy operations and claims processing across the entire U.S. healthcare system for weeks. UnitedHealth Group eventually disclosed that the breach affected roughly 100 million individuals — the largest
In May 2023, the City of Dallas got hit with Royal ransomware. Police dispatch systems went down. Court services froze. Municipal operations ground to a halt for weeks. The city ultimately spent over $8.5 million on recovery. And here's the part that stings: Dallas had cybersecurity staff
The Phone Call No One Wants to Get at 3 AM I got the call on a Tuesday morning. A mid-sized logistics company had every file server locked with a .lockbit extension. Their dispatchers couldn't route a single truck. Their accounting team was staring at ransom notes instead
In September 2023, MGM Resorts International watched helplessly as a single social engineering phone call spiraled into a cyberattack that cost the company over $100 million. Slot machines went dark. Hotel room keys stopped working. Reservations collapsed. And it all started because a threat actor called the help desk and
In May 2021, Colonial Pipeline paid a $4.4 million ransom after a single compromised password shut down fuel distribution across the U.S. East Coast. The attack didn't just expose a vulnerability in critical infrastructure — it exposed a truth most organizations ignore: the speed and quality of
In July 2020, Garmin went dark. Their fitness trackers, aviation navigation tools, and customer support systems all went offline simultaneously. A ransomware attack attributed to the WastedLocker strain reportedly crippled the company for days. If you're wondering how to respond to a cyberattack, Garmin's very public
The Attack That Paralyzed a Hospital System for 28 Days In 2024, Ascension Healthcare — one of the largest health systems in the United States — was hit by the Black Basta ransomware group. The attack disrupted operations across 140 hospitals. Clinicians reverted to paper records. Ambulances were diverted. It took nearly
