Healthcare Information Security

Cybersecurity in Healthcare

Healthcare Cybersecurity Is a Top 2019 Executive Challenge

September 25, 2018 - Healthcare cybersecurity will be one of the top 10 challenges, issues, and/or opportunities facing healthcare executives next year, according to a new poll by the Healthcare Executive Group (HCEG). Healthcare cybersecurity covers such issues as protecting the privacy and security of healthcare consumer information to maintain consumer trust in sharing data, the HCEG explained. For the...


More Articles

HHS Still Leads in DMARC Implementation To Stop Phishing Attacks

by Fred Donovan

With the Oct. 16 deadline looming, HHS continues to lead in securing the most domains of any federal agency as part of the DMARC protocol implementation, which is designed to prevent phishing attacks from succeeding. As of Sept. 14, HHS...

Europol Warns Nation-States Behind More Ransomware Attacks

by Fred Donovan

The European law enforcement agency Europol is warning that nation-states are increasingly behind ransomware attacks, such as the 2017 WannaCry campaign. The WannaCry ransomware targeted medical devices and...

Healthcare Workers Uninformed About Cybersecurity Best Practices

by Fred Donovan

Forty percent of healthcare workers would allow a colleague to use their work computer, displaying a disturbing lack of knowledge about cybersecurity best practices. Surprisingly, healthcare workers performed better than government...

Healthcare Lags Other Industries in Phishing Attack Resiliency Rate

by Fred Donovan

Healthcare trails other major industries in its phishing attack resiliency rate, which measures the ratio between people who report a phish versus those who fall victim to one, according to a report released Sept. 17 by Cofense. The...

OIG Backs FDA Process Changes To Boost Medical Device Security

by Fred Donovan

To improve medical device security, the HHS Office of the Inspector General (OIG) is recommending that the FDA better integrate cybersecurity criteria into its premarket review process for medical devices. In a report released Sept. 10,...

Consumers Have Most Confidence In Physician’s Health Data Security

by Fred Donovan

A full 87 percent of consumers surveyed by Rock Health said that they had confidence in the health data security of their physician, but that number dropped to 68 percent for pharmacies and 60 percent for health insurance...

FDA Expects Updated Medical Device Security Guidance This Fall

by Fred Donovan

The FDA plans to update its premarket guidance for medical device security this fall, said FDA Commissioner Scott Gottlieb during a Sept. 5 speech to the Medical Device Innovation Consortium 2018 Annual Public Forum. The guidance will...

Healthcare Data Presents Lucrative Target for Cyberattackers

by Fred Donovan

The healthcare sector will remain one of the most targeted industries by cyberattackers because of its valuable healthcare data, judged a report published Sept. 6 by Marsh & McLennan Companies' Global Risk Center. In fact, more...

9 Cybersecurity Vulnerabilities Found in Philips E-Alert Tool

by Fred Donovan

Nine cybersecurity vulnerabilities have been found in the Philips e-Alert Unit, a tool that monitors MRI system performance, according to an Aug. 30 ICS-CERT advisory. Attackers could exploit these vulnerabilities to compromise user...

For ASCs, Size Matters When It Comes to Healthcare Cybersecurity

by Fred Donovan

For ambulatory surgery centers (ASCs), healthcare cybersecurity challenges and responses are different depending on the size of the operation, observed Tom Hui, founder of SurgiCenter Information Systems and CEO of HSTpathways. Hui noted...

Qualcomm’s Medical Gateway Has Critical Cybersecurity Vulnerability

by Fred Donovan

Qualcomm Life’s Capsule Datacaptor Terminal Server, a medical gateway device, has a critical cybersecurity vulnerability in its code that could enable an attacker to obtain administrator-level privileges, ICS-CERT warned in an...

Wireless Infusion Pumps Could Increase Cybersecurity Vulnerability

by Fred Donovan

Wirelessly connecting infusion pumps to point-of-care medication systems and EHRs improves healthcare delivery but also increases cybersecurity vulnerability, warned NIST and the National Cybersecurity Center of Excellence (NCCoE) in a new...

Critical Cybersecurity Vulnerability Found in BD Alaris Plus Pump

by Fred Donovan

The BD Alaris Plus medical syringe pump has a critical cybersecurity vulnerability that could enable an attacker to gain remote access to the pump and affect its operation when it is connected to a terminal server via the serial port, BD...

Philips IntelliVue Information Center Hit By Cybersecurity Vulnerability

by Fred Donovan

Philips IntelliVue Information Center iX central patient monitoring system has a cybersecurity vulnerability that could result in the operating system becoming unresponsive due to a network attack, the ICS-CERT warned in an August 21...

Philips Delays Fix for Cardiograph Cybersecurity Vulnerabilities

by Fred Donovan

Philips does not intended to fix cybersecurity vulnerabilities in its PageWriter Cardiograph devices, which could allow attackers to modify settings on the devices, until mid-year 2019, according to an August 16 advisory from...

Cybersecurity Vulnerabilities Lurk in Philips IntelliSpace System

by Fred Donovan

ICS-CERT is warning about cybersecurity vulnerabilities in Philips’ IntelliSpace Cardiovascular (ISCV) cardiac image and information management systems that could enable an attacker to escalate privileges on the ISCV server and...

McAfee Uncovers Cybersecurity Vulnerabilities in Patient Monitors

by Fred Donovan

McAfee Labs has discovered cybersecurity vulnerabilities in a protocol used by patient monitors to communicate with central monitoring stations. If hackers could exploit the weakness in the RWHAT protocol used by connected medical devices...

Medtronic Criticized for Lax Medical Device Security Response

by Fred Donovan

Researchers Billy Rios and Jonathan Butts criticized Medtronic’s response to medical device security issues in its products during a presentation at the BlackHat security conference held last week in Las Vegas. The researchers said...

ICS-CERT Flags Medtronic Devices for Cybersecurity Vulnerabilities

by Fred Donovan

A Medtronic patient monitor and an insulin pump were flagged this week by ICS-CERT for cybersecurity vulnerabilities that could expose sensitive data to attackers. The Medtronic MyCareLink patient monitor suffers from insufficient...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks