Healthcare Information Security

Health IT Security and HIPAA News

Social Media Needs Transparent Privacy Policies for Healthcare Data


Two healthcare leaders are calling for greater transparency and stronger laws that outline the data collection practices of social media platforms. In Applied Clinical Informatics, Carolyn Petersen, Mayo Clinic Global Business Solutions...

Week-Long Hack on Vermont Provider Breaches 32,000 Patient Records


Elizabethtown Community Hospital, part of the University of Vermont Health Network, notified about 32,000 patients that their personal health information was breached during an email hack. On October 18, hospital officials discovered an...

Blockchain, HIPAA Regulation Lead Top 10 Stories of 2018


Throughout the year, healthcare privacy, security and cybersecurity have a remained a crucial part of boardroom discussions, determining how best to proceed in an ever-evolving threat landscape. Those conversations will continue to...

DHS Finds Encryption Vulnerabilities in Medtronic Programmers


The Department of Homeland Security’s Industrial Control Systems Cyber Emergency Response Team discovered encryption vulnerabilities in Medtronic’s 9790 and 2090 CareLink Programmers and 29901 Encore Programmers that could...

Proposed Bill Gives Consumers Right to Dispute PHI Record Accuracy


The Center for Democracy & Technology released a proposed draft federal privacy bill, centered around a consumer’s right to understanding where their data is located and reasonable access to data upon request. While the draft...

Ransomware Attack Impacts 16,000 Patients in Georgia


A ransomware attack on specialist Mind and Motion Developmental Centers of Georgia potentially breached the data of about 16,000 patients. Officials discovered a ransomware attack infected a company server on September 30, a Sunday. The...

AI, IoT, Medical Devices Top Health Cybersecurity Predictions for 2019


Cybersecurity continued to be a struggle for many in the healthcare sector this year, with several massive breaches, successful targeted phishing campaigns, and security events caused by human error. While providers struggled with the...

Email Error, Lack of Encryption Breaches Nebraska Patient Data


Fremont, Nebraska-based Prairie Fields Family Medicine is notifying 6,450 patients that their patient data was potentially breached due to an emailing error. An employee inadvertently sent an unencrypted spreadsheet to the wrong email...

HHS, OCR Seek Industry Feedback on HIPAA Update for Data Sharing


The Department of Health and Human Service and the Office for Civil Rights are seeking industry feedback on how to improve HIPAA guidance, especially around care coordination. The OCR Request for Information comes in response to an...

30 Percent of Online Health Databases Expose Patient Data


About 30 percent of online healthcare databases are left exposed online due to misconfiguration, according to a recent report from IntSights. The researchers scoured the internet to determine how easy it would be for a hacker to access...

OCR Settles with Colorado Provider for $111,000 over HIPAA Failures


The Department of Health and Human Services’ Office for Civil Rights settled with Pagosa Springs Medical Center for $111,400, for failing to terminate a former employee’s access to electronic protected health...

Third-Party Vendor Hack Breaches 48,000 Baylor Frisco Patients


Texas-based Baylor Scott and White Medical Center-Frisco is notifying about 47,948 patients or guarantors that their payment information was exposed for a week, after a hack on its third-party vendor’s credit card processing...

Malware Attack Hits University of Maryland Medical System


The University of Maryland Medical System was hit by a malware attack early Sunday morning, disrupting some IT system functions. According to officials, an outside source attempted to infiltrate the IT systems with a malware virus around...

EmblemHealth Fined $100K for 2016 Healthcare Data Breach


New Jersey Attorney General Gurbir Grewal fined health insurance vendor EmblemHealth $100,000, for its 2016 health data breach of more than 6,000 New Jersey residents. The New York-based insurer’s subsidiary Group Health is also...

Reduce Employee Email Risk by Taking Decisions Away from Users


Employees and human error often top the list as the healthcare sector’s biggest threat. Considering they are the catalyst for clicking malicious links, engaging with targeted phishing campaigns and mistakenly sending emails to the...

Fax Machine Purchases Banned by UK National Health Service


Starting in January 2019, the U.K. National Health Service will be banned from buying fax machines for its hospitals and provider offices. Officials have also enacted a plan to phase out the legacy technology by April 1, 2020. All...

EMR Vendor Ransomware Attack Impacts 16,000 Patient Records


California-based Redwood Eye Center notified the California Attorney General of a potential breach caused by a ransomware attack on its EMR hosting vendor IT Lighthouse. The third-party vendor hosts and stores the specialist’s...

DHS Flags Encryption Vulnerability in Philips HealthSuite Android App


The Department of Homeland Security National Cybersecurity and Communications Integration Center issued an alert on a vulnerability found in the Philips HealthSuite Health Android app, which would take only a low level of skill to...

Biggest Challenges, Lessons Learned from Health Cybersecurity in 2018


The cybersecurity issues faced by the healthcare sector in 2018 aren’t much different from those in recent years. However, hackers are increasing in sophistication and steadily improving success rates. The year started off with a...

20,000 Patients Impacted by Ransomware Attack on Illinois Specialist


The Center for Vitreo-Retinal Diseases in Illinois recently began notifying 20,371 patients that their data was potentially breached after a ransomware attack in September. On September 18, officials discovered a ransomware attack...


SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
Data Breaches

Our privacy policy

no, thanks

Continue to site...