Healthcare Information Security

Cybersecurity in Healthcare

Reviewing File Transfer Protocol Healthcare Cybersecurity Risks

by Elizabeth Snell

Preventing and detecting cryptocurrency mining malware are essential aspects to file transfer protocol (FTP) that covered entities and business associates need to consider when maintaining healthcare cybersecurity, the Office for Civil Rights...

Central Ohio Urology Data Security Incident Affects 300K

by Elizabeth Snell

Central Ohio Urology Group (COUG) reported that a data security incident may have exposed the information of patients, employees, and individuals who paid for medical services. An unauthorized individual reportedly posted files and documents...

Animas Warns of Potential Medical Device Cybersecurity Issue

by Elizabeth Snell

Animas Corporation, a Johnson & Johnson company, recently disclosed to users of a certain type of insulin pump that potential medical device cybersecurity vulnerabilities were discovered in it. The Animas OneTouch Ping insulin pump could...

HHS Funding to Aid Healthcare Cybersecurity Efforts

by Elizabeth Snell

In an effort to improve how organizations can respond to healthcare cybersecurity threats, and foster further information sharing in the industry, as well as in the public health sector, the Department of Health and Human Services (HHS) awarded...

ISAO SO Releases Cybersecurity Information Sharing Guidance

by Elizabeth Snell

Last week, The Information Sharing and Analysis Organization Standards Organization (ISAO SO) released several documents on cybersecurity information sharing guidance, focusing on cybersecurity risks, incidents, and best practices. One document...

Utilizing Network Security to Prevent Ransomware Attacks

by Elizabeth Snell

As healthcare organizations continue to implement new technologies, their data privacy and security measures cannot be an afterthought. This is especially true with healthcare ransomware attacks on the rise, which could compromise patient safety...

Healthcare Web Application Attacks Increase in Past Year

by Elizabeth Snell

There has been a 14 percent increase in overall web application attacks from Q1 2016 to Q2 2016, while healthcare web application attacks have also increased in the past year, according to recent research from Akamai. DDoS attacks also increased...

Healthcare Cybersecurity Task Force Seeks Industry Input

by Elizabeth Snell

The recently appointed Healthcare Cybersecurity Task Force is hoping that a crowdsourcing approach will draw in the necessary advice and insight for how the group can best implement change to keep the healthcare industry secure against evolving...

Cybersecurity Attack Affects MO Behavioral Health Facility

by Elizabeth Snell

Missouri-based Burrell Behavioral Health recently announced that it was the victim of a cybersecurity attack after an employee’s email account was accessed by an unauthorized party. Burrell made the discovery on July 7, 2016 and immediately...

Information Sharing Key in Improving Healthcare Cybersecurity

by Elizabeth Snell

Improving the outreach and information sharing on healthcare cybersecurity issues, along with having more educated and qualified cybersecurity personnel and health IT experts will be essential in strengthening the healthcare cybersecurity infrastructure,...

St. Jude Files Lawsuit Over Medical Device Security Claims

by Elizabeth Snell

Claims over potential medical device security issues with St. Jude Medical, Inc. pacemakers and other heart devices has now led to a lawsuit. St. Jude filed a lawsuit in the United States District Court for the District of Minnesota against Muddy...

New Federal CISO Set to Bolster National Cybersecurity Measures

by Elizabeth Snell

Brigadier General (retired) Gregory J. Touhill was announced as the first Federal CISO earlier this week, and is expected to continue the push toward stronger national cybersecurity measures. Touhill is currently the Deputy Assistant Secretary...

Medical Device Cybersecurity Key Focus in NIST Partnership

by Elizabeth Snell

A new risk assessment project designed for monitoring wireless IV medical infusion pumps hopes to further strengthen medical device cybersecurity across the healthcare industry. The National Institute of Standards and Technology’s (NIST)...

Healthcare Cybersecurity Knowledge Gaps in Phishing Awareness

by Elizabeth Snell

There is a need for both simulated phishing attacks and question-based evaluations to ensure that healthcare cybersecurity measures are able to protect sensitive data, according to a recent survey. The Wombat Beyond the Phish Report found that...

CHIME Member Leads Healthcare Cybersecurity Task Force

by Elizabeth Snell

Creating a set of recommendations that anyone in the healthcare industry can utilize is one of several goals for the federal healthcare cybersecurity task force, according to co-chair and CHIME board member Theresa Meadows, R.N., CHCIO. Meadows...

A Hacker’s Perspective on Strengthening Healthcare IT Security

by John Nye of CynergisTek

In today’s connected world most of us are frantically trying to protect our, or our organization’s, critical data and systems. Despite a couple of decades of constant advancements in IT security, there seems to be even more risks...

Cybersecurity Attacks Leading Large Health Data Breach Cause

by Elizabeth Snell

While the summer of 2016 is quickly coming to an end, covered entities and their business associates cannot ease up on their data security measures. If the past three months have been any indication, large health data breaches are not about to...

How FTC Data Security Aligns with NIST Cybersecurity Framework

by Elizabeth Snell

The NIST Cybersecurity Framework (CSF or The Framework) aligns with how FTC data security measures are outlined, according to a recent FTC blog post. Specifically, “the alleged lapses the FTC has challenged through its law enforcement actions...

NY Psychiatric Institute Cybersecurity Breach Affects 21K

by Elizabeth Snell

The New York State Office of Mental Health (OMH) recently announced that one of its facilities experienced a cybersecurity breach, which potentially exposed the records of research participants. Between April 28 and May 4 of this year, certain...

St. Jude Disputes Alleged Medical Device Security Issues

by Elizabeth Snell

St. Jude Medical Center recently responded to allegations that medical device security flaws exist in its pacemakers and other heart devices, calling the accusations “false and misleading.” Muddy Waters Capital LLC released a report...


SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
Data Breaches

Our privacy policy

no, thanks