Healthcare Information Security

EHR Security News

Healthcare Cybersecurity Efforts Improving, Still Need Work

August 18, 2016 - Ransomware, advanced persistent threats (APTs), and phishing attacks are the top most feared threats in healthcare cybersecurity, according to a recent HIMSS survey. While the majority of organizations have made efforts to prioritize their information security efforts, there is also still room for improvement. The 2016 HIMSS Cybersecurity Survey found that over 85 percent of respondents said...


Utilizing Administrative Safeguards to Prevent Insider Threats


Preventing healthcare insider threats needs to be a top priority for covered entities of all sizes, and with cybersecurity threats evolving each day, training methods must also remain current. Administrative safeguards, including user training...

5 Next-Generation Healthcare Security Solutions


The modern healthcare data center has truly evolved. We’re now seeing the emergence of a truly interconnected healthcare technology ecosystem spanning numerous heterogeneous IT platforms. Throughout all of this, security continues to play...

HITRUST Aids Small Orgs in Healthcare Cybersecurity Threats


Smaller healthcare organizations, specifically physician practices with less than 75 employees, can have difficulties in preparing against the evolving healthcare cybersecurity threats. That is why HITRUST and the North Texas-based health system...

Possible Microsoft Data Security Flaw Revealed in ‘Golden Key’


Healthcare organizations relying on Microsoft operating systems may want to take note of a recent potential data security issue, and make any necessary patches to ensure that patient information remains secure. Researchers MY123 and Slipstream...

Is There a Healthcare Cybersecurity Skills Shortage?


With ransomware attacks and other data security issues for healthcare organizations being regularly reported, employees with the necessary healthcare cybersecurity skills are crucial assets. However, if a recent survey shows a cybersecurity skills...

DoD Wants Army EHR Security Audit, Security Protocol Review


The Department of Defense plans to investigate whether or not the Army implemented effective security protocols to protect electronic health records through an EHR security audit, set to be performed in August 2016. The DoD Inspector General...

Why Healthcare Data Security, Compliance Issues Go Untreated


If there ever was a pulse of healthcare operations, it’s data. From patient enrollment forms, electronic health records, and health insurance information, the amount of electronic data flowing through the medical community increases every...

How to Avoid Common Healthcare Data Security Challenges


PHI cyber theft is on the rise. Ponemon Institute Reports in its Sixth Annual Benchmark Study on Privacy & Security of Healthcare Data, that nearly 90 percent of all healthcare organizations have suffered at least one data breach in...

Hospital Cybersecurity Threats Increase Solutions Market by 13%


The hospital cybersecurity threats solutions market is expected to increase by 13.6 percent between 2016 and 2021, according to research from Frost & Sullivan.   The US Hospital Cybersecurity Market: 2015-2021 report found that there...

How HIPAA Compliance Can Help Against Ransomware Attacks


As many as 4,000 ransomware attacks have occurred each day since January 1, 2016, with an increasing number of them targeting the healthcare industry. In one of the most costly attacks to date on a hospital, Hollywood Presbyterian Medical Center...

How Healthcare Cybersecurity Relates to DHS Incident Reporting


The Department of Homeland Security (DHS) recently released a fact sheet on how organizations should report cybersecurity incidents to the federal government. While covered entities must adhere to HIPAA regulations in regard to reporting potential...

Fight Healthcare Ransomware with National HIT Safety Center


With more covered entities becoming targets for their sensitive information - PII and PHI - it is essential that the necessary tools are put in place to prevent healthcare ransomware attacks. This is where a National Health IT Safety Center can...

Preparing Against Current Healthcare Cybersecurity Threats


It’s hard to believe that anyone would think of anonymous hackers taking down websites and disrupting networks just for fun as the good old days, but in many ways they were. At least compared to today. This is especially true when it comes...

NIST Urges End of SMS Messaging in Two-Factor Authentication


Using SMS messaging in two-factor authentication has the risk that information may be intercepted or redirected, and other alternatives should instead be considered, according to a National Institute of Standards and Technology (NIST) draft guide....

Healthcare Ransomware Leads Other Industries by Large Margin


As the healthcare industry continues to implement new technologies, there are more options for unauthorized third-party attackers to try and infiltrate networks in order to access sensitive data, such as patient PHI. However, a recent study shows...

Most Hospitals Consider EHR Security in Contingency Planning


Nearly two-thirds of hospitals reported that EHR security is considered through their application of  HIPAA rules as they implement contingency planning, the Office of Inspector General found. Furthermore, when it comes to EHR contingency...

Assessing Vendor Risk for Stronger Health Data Security


Whether a healthcare organization hires vendors to process customer payments, store HR data in the cloud or run the IT help desk, you extend your overall cyber risk environment to that of your third party providers. Too often, healthcare decision-makers...

Use Staff Training to Improve Hospital Ransomware Procedures


Healthcare organizations of all sizes need to ensure that they are regularly updating their technological, administrative, and physical safeguards as cybersecurity threats continue to evolve. This is particularly true when it comes to hospital...

Reps Push for Stronger Healthcare Ransomware Guidance


The Department of Health and Human Services (HHS) should consider healthcare ransomware attacks to be data breaches and continue to expand guidance on how providers react to ransomware, according to Representatives Ted Lieu and Will Hurd. The...


SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
Data Breaches

Our privacy policy

no, thanks