Healthcare Information Security

Healthcare Data Security

SamSam Ransomware Attacks Focus on Victims Who Will Pay Up

by Fred Donovan

Cybercriminals carrying out SamSam ransomware attacks, which have been identified by HHS as posing a significant threat to healthcare organizations this year, focus on victims that are most likely to pay to get their data back, such as...

AI Can Bolster or Undermine Healthcare Data Security, Panel Says

by Fred Donovan

Artificial intelligence (AI) can be used to improve healthcare data security, but it can also undermine healthcare data security, observed a panel at the World Medical Innovation Forum held in Boston April 23 to 25. The use and misuse of...

Likely Ransomware Attack Exposes 85K Patient Records in CA

by Fred Donovan

California-based Center for Orthopaedic Specialists (COS) admitted that a recent cybersecurity incident, which was described similar to a ransomware attack, succeeded in encrypting 85,000 patient records. “The patient data that was...

Healthcare Industry Scores Low on Data Security Knowledge

by Fred Donovan

The healthcare industry is one of the worst when it comes to data security knowledge, according to data from Wombat Security’s learning management system. Customers in the healthcare industry answered 23 percent of IT security...

Does Quantum Computing Threaten Healthcare Data Security?

by Fred Donovan

While some in healthcare see quantum computing as a way to harness big data to improve healthcare diagnostics and drug development, others see it as a threat to healthcare data security. Last year, IBM launched an initiative, IBM Q, to...

Orangeworm Jeopardizes Healthcare Data Security at Large Firms

by Fred Donovan

A new cyber group called Orangeworm is undermining healthcare data security at large firms using malware known as Trojan.Kwampirs to gain remote access to compromised computers, warned security firm Symantec in a new report released April...

Health Data Privacy Rears Its Head at Facebook Hearing

by Fred Donovan

During Congressional hearings last week, Rep. Marsha Blackburn (R-Tenn.) called on Facebook Chairman and CEO Mark Zuckerberg to support her bill, Balancing the Rights of Web Surfers Equally and Responsibly (BROWSER) Act, which would...

Healthcare Industry Worst in Stopping Insider Data Breaches

by Fred Donovan

The healthcare industry is the worst when it comes to stopping insider data breaches, according to Verizon’s 2018 Data Breach Investigations Report (DBIR) released April 10. The report found that the healthcare industry was the only...

GAO Raps CMS for Lax Healthcare Data Security in Medicare

by Fred Donovan

The Centers for Medicare and Medicaid Services (CMS) is lax in its oversight of healthcare data security when it comes to Medicare beneficiaries, particularly for sharing data with researchers, warned a government watchdog agency. Recent...

Virtua To Pay NJ $418,000 for HIPAA Violation

by Fred Donovan

Virtua Medical Group has agreed to pay a $418,000 fine and to beef up its data security in a settlement with the New Jersey government over allegations that it failed to protect patient data of more than 1,650 individuals, resulting in...

HIPAA Covered Entities Get Pass on OR Data Breach Notification Law

by Fred Donovan

HIPAA covered entities in Oregon are exempt from a new requirement that organizations in the state report data breaches within 45 days of discovery. Oregon Governor Kate Brown signed into law at the end of March amendments (Senate Bill...

How EU Data Privacy Rule Could Impact US Healthcare Providers

by Fred Donovan

US healthcare organizations that handle personal information of EU individuals will face stricter regulatory requirements and possibly hefty fines under the EU’s new data privacy rule set to take effect May 25, 2018. The General...

Survey Finds Lax Patching Practices Feed Healthcare Data Breaches

by Fred Donovan

Patching vulnerabilities in your systems and applications is one of the most important steps you can take to prevent a healthcare data breach at your organization. Yet, a majority of security professionals in the healthcare and...

CareFirst BlueCross BlueShield Fesses Up to Phishing Attack

by Fred Donovan

Baltimore-based CareFirst BlueCross BlueShield admitted March 30, 2018 that the personal data of 6,800 CareFirst members may have been exposed by a phishing attack that compromised an employee’s email account. Information that could...

Creating Strong Healthcare Data Security, Positive User Experience

by Bill Kleyman

I was working with a healthcare organization recently and were discussing some new data security initiatives around remote, mobile, and local users. We had a few teams in the room with us. The end-user compute (EUC) team focused on...

Threat Intelligence Sharing Essential for Healthcare Cybersecurity

by Elizabeth Snell

The National Health Information Sharing and Analysis Center (NH-ISAC) constantly stresses the need for threat intelligence sharing in the healthcare sector, especially as cybersecurity threats grow increasingly...

OIG Compliance Audit Finds HHS Risk Management, IAM Issues Continue

by Elizabeth Snell

The enterprise-wide information security program within the Department of Health and Human Services (HHS) has improved, but there are still risk management weaknesses, issues with identity and access management (IAM), and problems in other...

Healthcare Data Privacy, Security Concerns Hinder Digital Adoption

by Elizabeth Snell

Healthcare data privacy and security concerns are pushing healthcare payers and providers to reconsider whether or not they want to adopt mobile and digital health tools, according to the 8th Annual Industry Pulse Report from Change...

How Compliance, Data Security Needs Shift with Big Data Push

by Elizabeth Snell

Numerous companies are working to evolve their database ecosystems through cloud and big data initiatives, and are subsequently facing an increasing number of compliance and data security needs. Recent research found though that not many...

Data Security Cited in ONC Health Data Exchange Framework Praise

by Elizabeth Snell

ONC’s Trusted Exchange Framework and Common Agreement (TEFCA) draft has so far been met with industry support, with organizations lauding ONC in working to strengthen trust and support for nationwide interoperability while also...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...