Healthcare Information Security

HIPAA Administrative Safeguards

Mobile Security Key Focus in Recent NIST Resources

by Elizabeth Snell

The National Institute of Standards and Technology (NIST) recently released two draft resources that highlight current mobile security threats and then provide guidance on how public and private organizations can best approach those threats....

Information Sharing Key in Improving Healthcare Cybersecurity

by Elizabeth Snell

Improving the outreach and information sharing on healthcare cybersecurity issues, along with having more educated and qualified cybersecurity personnel and health IT experts will be essential in strengthening the healthcare cybersecurity infrastructure,...

Medical Device Cybersecurity Key Focus in NIST Partnership

by Elizabeth Snell

A new risk assessment project designed for monitoring wireless IV medical infusion pumps hopes to further strengthen medical device cybersecurity across the healthcare industry. The National Institute of Standards and Technology’s (NIST)...

Protecting Against Unauthorized Healthcare Data Access

by Deepak Patel of Imperva

No healthcare organization wants to receive notification that there has been unauthorized healthcare data access at the company. Not only could this potentially expose patient information, but it could result in potential fines for the organization...

Will Privileged User Abuse Affect Healthcare Data Security?

by Elizabeth Snell

Employee access is a key aspect of healthcare data security, and healthcare organizations of all sizes need to ensure that their administrative safeguards account for the type of information employees view, use, or transfer. A recent Ponemon...

Unauthorized Access Affects 900K at Arizona Facility

by Elizabeth Snell

Arizona-based Valley Anesthesiology and Pain Consultants (VAPC) reported that it discovered unauthorized access on one of its computer systems, which potentially caused the information exposure of 882,590 patients. VAPC learned about the potential...

Utilizing Administrative Safeguards to Prevent Insider Threats

by Elizabeth Snell

Preventing healthcare insider threats needs to be a top priority for covered entities of all sizes, and with cybersecurity threats evolving each day, training methods must also remain current. Administrative safeguards, including user training...

NIST Urges End of SMS Messaging in Two-Factor Authentication

by Elizabeth Snell

Using SMS messaging in two-factor authentication has the risk that information may be intercepted or redirected, and other alternatives should instead be considered, according to a National Institute of Standards and Technology (NIST) draft guide....

Health Data Privacy Discussed in ONC Blockchain Proposal

by Elizabeth Snell

The Office of the National Coordinator for Health Information Technology (ONC) and the National Institute of Standards and Technology (NIST) submitted an “Ideation Challenge” proposal for the potential benefits of blockchain technology...

How Insider Threats May Affect Healthcare Data Security

by Elizabeth Snell

Malware attacks are becoming an increasingly major threat to covered entities, but if a recent report is any indication, insider threats could also lead to healthcare data security compromises. More than 200 C-level security executives and IT...

NIST Cybersecurity Framework Updates, Clarification Underway

by Elizabeth Snell

The NIST Cybersecurity Framework will receive a minor update, which will include updating the informative references, clarifying guidance for implementation tiers, and placement of cyber threat intelligence in the core, according to a recent...

Improper Employee Access Creates Potential Health Data Breach

by Jacqueline Belliveau

ProMedica, a healthcare organization in Ohio, has investigated a potential healthcare data breach after discovering several employees had inappropriately accessed the private medical records for patients they were not directly treating. According...

Hackers Cause Possible Healthcare Data Breach for 40K Patients

by Jacqueline Belliveau

A Connecticut-based podiatry group is facing a possible healthcare data breach that has impacted approximately 40,491 individuals after hackers accessed network services, according to the Office of Civil Rights data breach report. An outside...

Do Employee Errors Jeopardize Healthcare Data Security?

by Jacqueline Belliveau

Many people have heard the adage that humans are not perfect. But, when it comes to patient information, human imperfections can lead to serious healthcare data security issues. In a recent survey from Experian Data Breach Resolution and Ponemon...

Preparing for Online Attacks in Hospital Data Security

by Tom DeSot of Digital Defense, Inc.

Following recent headlines highlighting online attacks to hospital data security around the country, many are discussing the growth of not only ransomware, but various methods of targeted attacks and how to stop them. One way is for hospitals...

How NIST Design Guide Could Impact Healthcare Cybersecurity

by Jacqueline Belliveau

Health IT developers are experiencing a serious dilemma when it comes to innovating the latest technologies while simultaneously developing the strongest healthcare cybersecurity measures for their inventions. Healthcare providers are also investing...

Potential Medicaid Data Breach for 13K Louisiana Recipients

by Elizabeth Snell

The Louisiana Attorney General’s office recently announced that an individual was arrested on Medicaid fraud charges, stemming from stolen Louisiana Healthcare Connections (LHCC) information. LHCC explained in a statement on its website...

Evolution, Not Revolution Coming to Healthcare Data Security

by Elizabeth Snell

When it comes to protecting sensitive information and maintaining strong healthcare data security, it is not a matter of revolutionary changes, but rather evolutionary change, according to Kate Borten, president and founder of The Marblehead...

How Administrative Safeguards Can Prevent Data Breaches

by Elizabeth Snell

Preventing healthcare data breaches is a common goal for covered entities of all sizes. It can be easy to let the importance of administrative safeguards fall behind other areas, such as concerns over hacking and stolen devices, but organizations...

People Are Top Health Data Security Risk, Says Halamka

by Elizabeth Snell

There are numerous health data security risks that organizations need to prepare for, but human error is the top way that covered entities remain vulnerable, according to Beth Israel Deaconess Medical Center (BIDMC) CIO John Halamka, MD, MS....

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks