Healthcare Information Security

Health IT Security and HIPAA News

Iron-Clad HIPAA, EULAs; But Can a Dispute Put Patient Data at Risk?

by

A recent breach notification has left many scratching their heads. Key Dental Group notified patients their data was potentially breached when an EMR vendor allegedly refused to return a patient database. In the notification, the...

Ransomware Attack Impacts EHR of Rhode Island Provider

by

Rhode Island-based Thundermist Health Center was hit by a ransomware attack early Thursday, impacting some patient care. According to its website, officials acted quickly to contain the attack and were able to protect patient data and...

Pharmaceutical Companies Most Targeted Industry by Cybercriminals

by

Phishing attacks and fraudulent business email compromise against the pharmaceutical sector have jumped 149 percent in the past year, making the biopharma sector the most targeted industry by hackers. According to Proofpoint researchers,...

Data of 7,000 Tandigm Health Patients Exposed by Site Vulnerability

by

Philadelphia-based Tandigm Health recently notified about 7,000 patients that their personal data may have been exposed for more than six months, due to a website vulnerability. On Sept. 25, 2018, Tandigm officials discovered a potential...

DOJ Indicts SamSam Hackers Behind Targeted Ransomware Attacks

by

The Department of Justice indicted two Iranian hackers behind the targeted and highly successful SamSam ransomware campaign that has plagued the healthcare sector for several years. The federal prosecutors charged Mohammad Mehdi Shah...

2.65M Atrium Health Patient Records Breached in Third-Party Vendor Hack

by

The data of more than 2.65 million Atrium Health patients was breached for a week-long period, due to a cyberattack on the health system’s billing vendor AccuDoc Solutions in September. The North Carolina billing vendor prepares...

Arizona MCOs Fail OIG Security Audit, Putting Medicaid Data at Risk

by

A Department of Health and Human Service Office of Inspector General audit of two Arizona Managed Care Organizations found significant, security vulnerabilities in its information systems, which call into question the integrity of the...

Pennsylvania Judge Rules UPMC Must Protect Employee Data

by

The Pennsylvania Supreme Court ruled last week that the University of Pittsburgh Medical Center is responsible for protecting personal employee data from hackers: The latest in a lengthy class-action lawsuit filed by UPMC employees against...

Dental Breach Notification Sparked by EMR Vendor Refusal

by

Florida-based Key Dental Group is notifying some of its patients of a breach, after its electronic medical record vendor refused to return a patient database at the end of its contract. According to officials, Key Dental received a...

Allergy Associates Settles with OCR for $125K over HIPAA Violation

by

Connecticut-based Allergy Associates of Hartford settled with the Office for Civil Rights for $125,000, for a 2015 incident involving impermissible disclosure of a patient’s protected health information to a reporter. In February...

Weekend Ransomware Attack Interrupts Care at 2 Ohio Hospitals

by

Patients needing emergency care were diverted away from East Ohio Regional Hospital and Ohio Valley Medical Center over the weekend due to a ransomware attack. Officials confirmed the attack began on Friday night and continued into...

NIST Seeks Comment on Remote Monitoring, Telehealth Cybersecurity

by

The National Cybersecurity Center of Excellence at NIST is seeking industry feedback on a draft paper that outlines how to best secure remote monitoring devices and systems for telehealth providers. As many healthcare delivery...

New Stealthy Russian Hacking Tool Targets Government Agencies

by

A new Russian hacking tool is targeting government systems in the United States and Europe through spear-phishing attacks, using stealthy, sophisticated mechanisms to go undetected. Discovered by Palo Alto Networks, the...

176.3 Patient Records Taken in Reported Breaches Since 2009

by

Hacking is less common in the healthcare sector than theft and unauthorized disclosure, but those cybercriminals stole more than half of the breached patient records from 2009 to 2017, according to a new JAMA Internal Medicine report. The...

HealthEquity Email Hack Breaches Data of 190K Patients

by

An email hack on two employee email accounts potentially breached the personal data of 190,000 HealthEquity customers. HealthEquity provides health savings accounts and similar services to more than 3.4 million individuals. This is the...

Building a Secure Vendor Relationship with Inventory, Management

by

The healthcare sector has been a primary target of hackers for more than a year, and the attacks continue to increase in sophistication. While many providers have adjusted their security posture in attempt to shore up some of these...

Phishing Attack Impacts Health Data of 128K Employees, Patients

by

New York Oncology Hematology is notifying 128,400 employees and patients that their patient data may have been breached, after 15 employees fell victim to a phishing campaign in April. The phishing emails were highly targeted, appearing...

AMIA Calls for Federal Alignment of Health Data Privacy Policies

by

The American Medical Informatics Association is calling on the Trump Administration to better align data privacy policies from both the health and consumer sectors. In a letter to the National Telecommunications and Information...

Hospital Leaders Feel Underprepared for Cybersecurity Threats

by

About 75 percent of providers and 62 percent of administrators feel underprepared to face cybersecurity risks, due to staffing, training, and awareness, according to a new report from medical device manufacturer Abbott and the Chertoff...

Homeland Security Gains Cybersecurity Agency with New Legislation

by

The House of Representatives unanimously passed legislation on Monday, establishing the Cybersecurity and Infrastructure Security Agency with the Department of Homeland Security. The Senate passed the bill in October, and it now heads to...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...