Healthcare Information Security

Health IT Security and HIPAA News

4.4M Records Exposed in 117 Health Data Breaches in Q3 2018

by

A total of 4.4 million patient records were compromised in 117 health data breaches in the third quarter of 2018, according to the latest Protenus Breach Barometer. These figures compare with 3.15 million records compromised in 142 health...

Many IT Pros Lack Budget for Connected Medical Device Security

by

A disturbing 41 percent of healthcare IT professionals do not have a separate or sufficient budget for connected medical device security, according to a recent survey by Propeller Insights on behalf of Zingbox. Despite this lack of...

Healthcare Makes Up One-Quarter of SamSam Ransomware Attacks

by

Healthcare organizations have accounted for one-quarter of SamSam ransomware attack victims so far this year, said security firm Symantec in a recent blog post.  In total, 67 different organizations across sectors have been...

FDA Needs Procedures for Recalls of Vulnerable Medical Devices

by

HHS OIG is recommending that the FDA establish and maintain procedures for handling recalls of vulnerable medical devices that can be exploited by attackers or other unauthorized users. In addition, OIG advises the FDA to establish...

OCR Recommends Healthcare Cybersecurity Best Practices

by

As National Cybersecurity Awareness Month draws to a close, OCR is recommending healthcare cybersecurity best practices to prevent cyberattacks from succeeding and lessening their impact if they do succeed. “Because ePHI...

Only 29% of Healthcare Entities Have Full Cybersecurity Program

by

Only 29 percent of healthcare organizations report having a comprehensive cybersecurity program in place, according to the 2018 CHIME HealthCare’s Most Wired survey released this week. Among those organizations that don’t have...

Cybersecurity Vulnerabilities Lurk in Brain Stimulation Devices

by

Neurostimulators have cybersecurity vulnerabilities that could be exploited by hackers to get access to the devices, manipulate them, and steal data transmitted by them. This was the conclusion of a report prepared by security firm...

Ransomware Attack at Iowa Eye Clinic Puts PHI of 40K at Risk

by

Iowa-based Jones Eye Clinic suffered a ransomware attack that may have compromised personal data on 40,000 patients, the Sioux City Journal reported Oct. 24. Information that might have been exposed included patient full name, address,...

Healthcare Continues To Bear the Brunt of Ransomware Attacks

by

Healthcare remains the most targeted industry by ransomware attacks, which have spiked in the third quarter of 2018, according to latest data from specialist insurer Beazley. Ransom demands in the most sophisticated type of breaches also...

HHS Opens Healthcare Cybersecurity Center To Aid Private Sector

by

HHS has opened its Health Sector Cybersecurity Coordination Center (HC3), which will be a healthcare cybersecurity threat analysis and incident response partner to the private sector. HC3 replaces the Healthcare Cybersecurity and...

Acute Care Moves To Secure Healthcare Communication Platforms

by

Acute care organizations are moving toward secure healthcare communication platforms that streamline enterprise-wide communication, while ambulatory organizations are focused on HIPAA-compliant secure messaging. That was one finding of a...

Server Configuration Is Top Healthcare Software Vulnerability

by

Server configuration is the top healthcare software vulnerability, followed by information leakage and cryptographic issues, according to Veracode’s State of Software Security (SOSS) study. Other top vulnerabilities for...

HHS OIG Probes Healthcare.gov Portal Data Breach Affecting 75K

by

HHS OIG is investigating the Healthcare.gov portal data breach that put personal information on 75,000 individuals at risk. So far, the office has determined that no PHI, banking, or tax information was exposed during the breach,...

HSCC Wants Healthcare Cybersecurity Waiver to Anti-kickback Rules

by

The Healthcare Sector Coordinating Council (HSCC) asked the HHS OIG for a waiver to the anti-kickback rules to enable the donation of healthcare cybersecurity technology and services to improve the cybersecurity of smaller healthcare...

Another Major Storm, Another HHS HIPAA Privacy Rule Waiver

by

HHS Secretary Alex Azar has issued another HIPAA Privacy Rule waiver for US territory the Northern Marianas Islands, which was devastated by Super Typhoon Yutu this week. Super Typhoon Yutu was a Category 5 storm when it hit the Northern...

New Opioid Law Includes Expanded Patient Data Sharing Provision

by

President Donald Trump signed into law this week a sweeping opioid measure that includes expanded patient data sharing regarding opioid and other substance addiction treatment information. The law, however, does not include a provision...

Healthcare Takes Around 350 Days to Identify, Contain Data Breach

by

The healthcare industry had the second highest number of days to identify and contain a data breach, around 350 days, according to a recent study by The Ponemon Institute and IBM. The healthcare industry was second only to the...

ERS Online Coding Error Exposes 1.25M Users to Health Data Breach

by

The Employee Retirement System (ERS) of Texas reported to OCR on Oct. 15 that information on potentially 1.25 million people may have been exposed in a health data breach. In a statement on its website, ERS explained that a coding error...

Healthcare Cybersecurity Is a Top Safety Issue for Hospital Pros

by

Healthcare cybersecurity was listed as one of the top safety issues for hospitals and other healthcare facilities, behind severe weather and active shooter incidents, according to a survey of 300 healthcare safety professionals by Rave...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...