Healthcare Information Security

Health IT Security and HIPAA News

16K Patients Notified Following Phishing Scam in MD Facility

by

Maryland-based Chase Brexton Health Care reported that “a number of” its employees fell for a phishing scam between August 2, 2017 and August 3, 2017. Employees received a “bogus” survey via email, which once completed,...

Why Open Source Security Matters for Healthcare Orgs

by

Open source software can help healthcare organizations remain flexible as they adopt new IT solutions, but if entities lack open source security measures it can lead to larger cybersecurity issues. A recent survey found that organizations in...

Encouraging Collaboration for Improved Data Security Measures

by

Malicious actors are not going to disappear anytime soon, meaning that healthcare organizations must remain vigilant in improving their data security measures. Collaboration and information sharing will play critical roles in strengthening healthcare...

41% of Health Data Breaches Stem from Unintended Disclosure

by

Unintended data disclosure, such as emails containing PHI sent to the wrong recipient or servers left publicly accessible, accounted for 41 percent of reported health data breaches the first nine months in 2017, according to research from Beazley....

US-CERT Urges Updates to Counter Found WiFi Vulnerabilities

by

WiFi Protected Access II (WPA2) handshake traffic could potentially be manipulated by attackers within range of vulnerable devices, according to recent research. The WiFi vulnerabilities could lead to malicious users gaining access to passwords,...

Will Common Rule Changes Impact Health Data Security?

by

The American Medical Informatics Association (AMIA) reiterated its support of considered changes to the Federal Policy for the Protection of Human Subjects, or the Common Rule. Adjustments to the Common Rule could also have an impact on certain...

Regular Employee Training Essential in Healthcare Cybersecurity

by

Healthcare cybersecurity threats are constantly evolving, forcing covered entities and business associates to subsequently adjust their privacy and security measures to keep PHI secure. A key aspect to data security though is regular employee...

Single National Data Breach Notification Standard Proposed

by

A recently proposed bill calls for a single national data breach notification standard, which would replace the existing state notification laws and “clarify and strengthen” organizations’ reporting obligations. Rhode Island...

HIMSS Calls for Secure Data Exchange, HHS Cybersecurity Role

by

In two separate publications, HIMSS has stressed the need for nationwide secure data exchange and also maintained that healthcare must have “a champion at HHS encouraging stakeholders to be proactive and relentlessly vigilant about cybersecurity.”...

Kromtech Security Discovers Health Data Breach of 150K Patients

by

Kromtech Security researchers found a potential publicly accessible Amazon S3 repository that may have led to a health data breach impacting over 150,000 individuals, according to a company report. “Patient Home Monitoring” is...

AHIMA: Patient Data Access Through Patient Portals Increases

by

Eighty-two percent of consumers took advantage of patient data access through a patient portal in 2016, an increase from less than 5 percent who did so in 2013, according to a study from the American Health Information Management Association...

Partnership Stressed in IoMT Medical Device Cybersecurity Bill

by

Two state representatives introduced a medical device cybersecurity bill this week that focuses on centralizing current and relevant frameworks, guidelines, and standards for Internet of Medical Things (IoMT) devices. There must be collaboration...

Health IT Security, FHIR Focus of ONC Secure API Server Challenge

by

ONC is challenging healthcare stakeholders to build secure Fast Healthcare Interoperability Resources (FHIR) servers to improve health IT security and ensure that secure FHIR options are available in the future. The Secure API Server Showdown...

Education, Information Sharing Key in Healthcare Cybersecurity

by

Creating a strong culture of healthcare cybersecurity, including employee education, risk assessments, and information sharing are all essential aspects for healthcare organizations currently, according to industry stakeholders. Cook Children’s...

Medical Device Cybersecurity Focus of AEHIS, MDISS Collaboration

by

Medical device cybersecurity education, best practices, advocacy, and information sharing are key objectives in the recently announced collaboration between the Association for Executives in Healthcare Information Security (AEHIS) and the Medical...

Using Secure Texting for Improved Patient Care, Data Security

by

Implementing new technical solutions, such as secure texting, can help healthcare providers of all sizes and in different locations better care for patients and ensure PHI security. Regardless of where an organization is based though, federal...

Arkansas Facility Ransomware Attack Potentially Affects 128K

by

Arkansas Oral & Facial Surgery Center recently announced on its website that it experienced a ransomware attack on its computer network on July 26, 2017. An investigation determined that the ransomware had been installed either earlier that...

3 Ways All-Flash Could Benefit Your Healthcare Data Security

by

Working with healthcare data security over the past couple of years has been really interesting. First of all, we’re seeing a bit of a redesign happening around efficiency, user optimization, and improved systems that are capable of delivering...

Creating a Culture of Data Privacy, Security in Healthcare

by

Organizations of all sizes need to be working toward maintaining proper data privacy and security measures in the healthcare industry. The threat landscape is continuously evolving, and falling behind could lead to a large-scale data breach....

Will Healthcare Blockchain Resolve Data Privacy Concerns?

by

Healthcare blockchain is increasingly being viewed as a potential solution to numerous IT problems, such as connectivity issues, data privacy concerns, and patient record sharing barriers, according to a recent Black Book survey. The Black Book...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks