Healthcare Information Security

Health IT Security and HIPAA News

Premera Accused of Trashing Computer in Health Data Breach Lawsuit

by

Premera Blue Cross is being accused of destroying a key piece of evidence in the class-action lawsuit against the health insurer over a health data breach that compromised PHI on 11 million people. Lawyers for the breach victims filed a...

PHI Data, My Friend, Is Blowin’ in the New Mexico Wind

by

Medical records containing PHI data of patients from Turquoise Lodge Hospital were found blowing around the streets of Albuquerque, New Mexico, TV station KRQE reported Sept. 1. The medical records were being transported to a secure...

Robust Health Data Security Needed for PHI-Laden Mobile Devices

by

Strong health data security is vital for electronic media and mobile devices that process and/or store ePHI, stressed OCR in its August 2018 Cyber Security Newsletter. “Anyone with physical access to such devices and media,...

NIST Cybersecurity Framework To Get Privacy Framework Companion

by

NIST is launching a collaborative privacy framework initiative as a complement to the NIST Cybersecurity Framework, the agency announced Sept. 4. The privacy framework would provide voluntary guidelines for protecting privacy in an era of...

CISOs Unite To Improve IT Security in Healthcare Supply Chain

by

Healthcare CISOs have set up a council to develop, recommend, and promote security best practices to bolster IT security throughout the healthcare supply chain. Founding members of the Provider Third Party Risk Management Council include...

HIPAA Privacy Rule Can Be Tool for Health Information Exchange

by

Rather than being a barrier to information sharing and interoperability, the HIPAA Privacy Rule can be seen as a tool to facilitate health information exchange and flow across the health ecosystem, argued OCR and ONC in an Aug. 30 blog...

9 Cybersecurity Vulnerabilities Found in Philips E-Alert Tool

by

Nine cybersecurity vulnerabilities have been found in the Philips e-Alert Unit, a tool that monitors MRI system performance, according to an Aug. 30 ICS-CERT advisory. Attackers could exploit these vulnerabilities to compromise user...

PHI on 20K Children Exposed in WellCare Healthcare Data Breach

by

PHI on close to 20K children was exposed in a healthcare data breach when WellCare Health Plans, which administers the Missouri Medicaid plan, sent letters to the wrong addresses, the Kansas City Star reported Aug. 29. The company said...

For ASCs, Size Matters When It Comes to Healthcare Cybersecurity

by

For ambulatory surgery centers (ASCs), healthcare cybersecurity challenges and responses are different depending on the size of the operation, observed Tom Hui, founder of SurgiCenter Information Systems and CEO of HSTpathways. Hui noted...

HMC Says Ransomware Attack Turned Into Healthcare Data Breach

by

Health Management Concepts (HMC) recently experienced a ransomware attack that quickly turned into a healthcare data breach. In an Aug. 22 letter, attorneys for HMC informed the New Hampshire Attorney General that it discovered on...

Qualcomm’s Medical Gateway Has Critical Cybersecurity Vulnerability

by

Qualcomm Life’s Capsule Datacaptor Terminal Server, a medical gateway device, has a critical cybersecurity vulnerability in its code that could enable an attacker to obtain administrator-level privileges, ICS-CERT warned in an...

Few Execs Believe Healthcare IT Security Tech Will Be Disruptive

by

Only 7 percent of executives surveyed by Reaction Data believe that healthcare IT security technology will have a significant disruptive impact on healthcare. Twenty-nine percent said that telemedicine will be the biggest disruptor, 20...

Phishing Attacks That Impersonate Trusted Individuals on the Rise

by

There was an 80 percent increase in phishing attacks that impersonated someone familiar to the targeted individual, according a study released August 28 by email security firm Mimecast. Mimecast found that there was one unstopped...

Wireless Infusion Pumps Could Increase Cybersecurity Vulnerability

by

Wirelessly connecting infusion pumps to point-of-care medication systems and EHRs improves healthcare delivery but also increases cybersecurity vulnerability, warned NIST and the National Cybersecurity Center of Excellence (NCCoE) in a new...

Critical Cybersecurity Vulnerability Found in BD Alaris Plus Pump

by

The BD Alaris Plus medical syringe pump has a critical cybersecurity vulnerability that could enable an attacker to gain remote access to the pump and affect its operation when it is connected to a terminal server via the serial port, BD...

Oklahoma Hospital Sued for Alleged HIPAA Violation Over Drowning

by

McAlester Regional Health Center (MRHC) in Oklahoma is being sued for an alleged HIPAA violation for sharing information on a boy’s drowning with his biological mother, reported the Pauls Valley Democrat newspaper on Aug. 23. The...

Speed, Not Security, Tops Priority List for Blockchain in Healthcare

by

While 84 percent of IT executives believe blockchain-based solutions are more secure than traditional systems, just 21 percent cited improved security and lower risk to data as the most significant benefit of blockchain adoption, according...

Dermatology Clinics See Rash of Healthcare Data Breaches

by

A pair of dermatology clinics reported to OCR this month healthcare data breaches that exposed PHI on a total of 5,375 patients. Maryland-based Anne Arundel Dermatology told OCR on August 9 that 1,310 individuals were affected by the...

Firms Lack Cyber Insurance Despite Healthcare Data Breach Costs

by

Given the proliferation and cost of healthcare data breaches and ransomware attacks, it is surprising that 70 percent of healthcare organizations have no cyber insurance, according to a survey of security executives by Ovum for...

Philips IntelliVue Information Center Hit By Cybersecurity Vulnerability

by

Philips IntelliVue Information Center iX central patient monitoring system has a cybersecurity vulnerability that could result in the operating system becoming unresponsive due to a network attack, the ICS-CERT warned in an August 21...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...