Healthcare Information Security
  • Remote Access System Hacking Is No. 1 Patient Safety Risk

    October 3, 2018 - Hackers attacking healthcare through remote access systems and disrupting operations is the number one patient safety risk, according to the ECRI Institute’s annual Top 10 Health Technology Hazards for 2019. ECRI Institute said it published 50 cybersecurity-related alerts and problem reports in the last 18 months, a major increase over the prior period. “Remote access...

  • NIST Warns About Cybersecurity Vulnerabilities in Healthcare IoT

    October 1, 2018 - NIST has issued a draft report examining the cybersecurity vulnerabilities and privacy risks posed by Internet of Things (IoT) devices, including healthcare IoT.  “Many organizations are not necessarily aware they are using a large number of IoT devices. It is important that organizations understand their use of IoT because many IoT devices affect cybersecurity and privacy...

  • Boston Hospitals Cough Up $1M for ‘Boston Trauma’ HIPAA Violations

    September 20, 2018 - OCR announced Sept. 20 that it has fined three Boston-area hospitals close to $1 million for HIPAA violations involving the filming of ABC’s TV series “Save My Life: Boston Trauma.”* OCR reached HIPAA settlements with Boston Medical Center (BMC), Brigham and Women's Hospital (BWH), and Massachusetts General Hospital (MGH) for compromising patients’ PHI when...

  • Vendor Blamed for Health Data Breach Exposing 1,500 BCBSRI Members

    September 17, 2018 - Blue Cross and Blue Shield of Rhode Island (BCBSRI) said that a health data breach of PHI affecting 1,567 people was caused by a vendor responsible for sending benefits explanations to members, the Providence Journal reported. The benefits explanations, or summaries, were sent to the wrong members in the same household or on the same family healthcare plan. The summaries included...


Today's Top Stories

Risk Posed By 3rd-Party Services Is Big Healthcare Security Worry

BOSTON—Security risks posed by integration of third-party patient services will be an ongoing healthcare security concern for organizations, commented Johns Hopkins University and Medicine CISO Darren Lacey during a panel...

Anthem to Pay Record $16M for HIPAA Violations Exposing 79M Records

Anthem has agreed to pay a record $16 million, almost three times the previous highest HIPAA penalty, and to take correct actions to settle HIPAA violations that exposed the ePHI of close to 79 million people, OCR announced Oct....

Security Leaders Will Need to Protect Patient Privacy at Home

BOSTON – Healthcare security leaders need to think beyond protecting the organization to protecting patient privacy and data security at home in the coming years, observed Christiana Care Health System CISO Anahi Santiago. “At...

FDA Warns of Cybersecurity Vulnerabilities in CareLink Programmers

The FDA has issued a medical device safety alert about cybersecurity vulnerabilities in Medtronic’s CareLink programmers that could enable an attacker to change the functionality of the programmer or the implanted pacemaker it...

Azar Issues 2nd HIPAA Privacy Rule Waiver in As Many Months

As in the case of Hurricane Florence, HHS Secretary Alex Azar has waived sanctions and penalties under certain HIPAA Privacy Rule provisions for areas impacted by Hurricane Michael. The waiver is intended to enable greater information...

Aetna Reaches Settlements with State AGs Over HIPAA Violations

Health insurer Aetna has reached settlements with a number of state attorney generals over HIPAA violations resulting from mailings to HIV/AIDS and cardiac patients, the New Jersey attorney general announced Oct. 10. The three states and...

View all stories

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks