Michigan Medicine Reports 2nd Healthcare Data Breach This Year
The University of Michigan’s Michigan Medicine reported to OCR on Sept. 28 that there was an unauthorized access/disclosure of paper records that affected 3,624 individuals. In a press release, Michigan Medicine said that there was...Woman Charges WV Firm With Violating Her Patient Privacy Rights
Elizabeth Fry, a resident of Logan County, West Virginia, has filed a state lawsuit in Kanasha Circuit Court charging that Charleston-based Molina Information Systems violated her patient privacy rights by providing third party access to...OIG Forms Team to Protect HHS, Boost Cybersecurity Best Practices
The HHS OIG has formed a multidisciplinary cybersecurity team composed of auditors, evaluators, investigators, and attorneys from various HHS agencies to help protect department data and systems and foster cybersecurity best practices...Same Cybersecurity Vulnerability Uncovered in Different Devices
Security researcher Dan Regalado at Zingbox uncovered the same cybersecurity vulnerability — information exposure through an error message — in two medical devices made by different manufacturers. Regalado then notified the...Hospitals Fail at HIPAA Compliance Re Medical Records Requests
Many hospitals failed at HIPAA compliance in response to simulated patients’ requests for medical records, according to a study by Yale researchers published in the JAMA Network Open. The researchers surveyed 83 top-ranked US...California Court Denies Motion to Dismiss Health Data Breach Suit
The California Superior Court has denied a motion to dismiss a class action lawsuit against A.J. Boggs & Company for a health data breach that exposed confidential medical records of 93 individuals with HIV, Lambda Legal, who is...Healthcare IT Execs Lack Confidence in Medical Device Security
More than 60 percent of healthcare IT executives lack confidence that their current medical device security strategy protects patient safety and prevents disruptions in care. The survey found that only 39 percent of respondents were...Healthcare Data Security Threatened by APTs Targeting MSPs
Advanced persistent threats (APTs) are targeting managed service providers’ networks, endangering healthcare data security and data security in other US critical infrastructure sectors, warned the National Cybersecurity and...PHI Data Security of 19,000 Toyota Employees at Risk
Toyota Industries North America announced Sept. 28 that a data breach involving 19,000 current and former employees and health plan participants may have put PHI data security at risk. Toyota said it discovered on Aug. 30 that an...Remote Access System Hacking Is No. 1 Patient Safety Risk
Hackers attacking healthcare through remote access systems and disrupting operations is the number one patient safety risk, according to the ECRI Institute’s annual Top 10 Health Technology Hazards for 2019. ECRI Institute said it...HPH SCC Set To Issue Cybersecurity Best Practices for Healthcare
The Healthcare and Public Health Sector Coordinating Council (HPH SCC) soon plans to release voluntary cybersecurity best practices for medical device manufacturers and healthcare providers, the groups announced Oct. 1 on the kickoff...Partnership Uses Blockchain Technology To Secure Fertility Data
A partnership between Donor Concierge and ALTR will use blockchain technology to secure health data and patient privacy for FRTYL, a service that links fertility agencies and clinics with parents seeking infertility...FDA Unveils MITRE’s Medical Device Security Playbook
The FDA released Oct. 1 a medical device security playbook it developed with MITRE to advise healthcare organizations on securing their medical equipment. The playbook is intended to enable healthcare organizations plan for and...NIST Warns About Cybersecurity Vulnerabilities in Healthcare IoT
NIST has issued a draft report examining the cybersecurity vulnerabilities and privacy risks posed by Internet of Things (IoT) devices, including healthcare IoT. “Many organizations are not necessarily aware they are using a...Despite Patient Privacy Risks, More People Use Wearables for Health
Despite the patient privacy risks that collecting health data on insecure wearable devices could pose, the number of US consumers tracking their health data with wearables has more than doubled since 2013, according to the Deloitte 2018...Sponsored by Insight