Healthcare Information Security

Cybersecurity News

Alabama Medicaid Data Security, Information Security Can Improve

September 21, 2017 - Alabama's Medicaid Management Information System (MMIS) had an adopted security program, but there were still potential vulnerabilities stemming from lacking Medicaid data security, according to a recent OIG investigation. “These vulnerabilities remained because Alabama neither implemented sufficient controls over its MMIS data and information systems nor provided sufficient...


How Vendors, Providers Can Create Strong Health Data Security


When it comes to maintaining HIPAA compliance, both healthcare providers and their chosen third-party vendors – or business associates – need to work together for comprehensive and current health data security. Compliance can get...

Focusing on Healthcare IoT Security with Expanding Market


The Internet of Things (IoT) is quickly becoming a more attractive option to organizations across sectors, but IoT security, standards, interoperability, and cost are still key concerns for executives, a recent report found. Verizon’s State...

EHRA: Health Data Sharing Not Aided with Regulatory Penalties


Advocating for penalizations for providers and EHR developers is the wrong approach for encouraging health data sharing, according to a recent EHR Association (EHRA) blog post. Written in response to a Health Affairs post by former ONC Chief...

HITRUST Urges Collaboration for Improved Healthcare Cybersecurity


HITRUST held its first Community Extension Program meeting last week at Tufts Medical Center in downtown Boston, talking challenges, best practices, and lessons learned in healthcare risk management programs. One of the overarching goals of the...

Using Threat Intelligence to Improve Healthcare Cybersecurity


While 84 percent of organizations consider threat intelligence “essential to a strong security posture,” entities admit that the large amount of threat data and a lack of staff expertise lower their threat program effectiveness, according...

Why Guidance is Critical for Strengthening Healthcare Cybersecurity


Healthcare providers must adhere to HIPAA rules and required state regulation with regard to maintaining data security. But not all regulations are specific in how covered entities should approach healthcare cybersecurity in an evolving industry....

ICS-CERT Reports Medfusion Medical Device Vulnerabilities


Recently discovered medical device vulnerabilities in infusion pumps could potentially allow a remote attacker to gain unauthorized access, affecting the pump’s intended operation, according to the Department of Homeland Security’s...

Medical Device Security Critical with FDA Interoperability Guide


Safely and effectively exchanging and using data is the key focus of the recent FDA guide on medical device security and interoperability. FDA explained that Design Considerations and Pre-market Submission Recommendations for Interoperable Medical...

3 Tips to Ensure Healthcare Data Security in Evolving Environment


There’s so much happening with new types of advanced security technologies. Healthcare data security teams must analyze solutions around on premise as well as cloud options. Furthermore, the granularity of security makes it a challenge...

Maintaining Medical Device Cybersecurity in an Evolving Industry


Outdated operating systems in connected devices could create patient safety issues in addition to medical device cybersecurity concerns. A faulty implanted device could impacts patients or ransomware could prevent patients from receiving proper...

FDA Announces Update on Abbott Cybersecurity Vulnerabilities


A recent firmware update was created in an effort to reduce potential harm from cybersecurity vulnerabilities in certain Abbott pacemakers. The FDA approved the update, saying patients and providers should discuss the firmware update at their...

OIG Notes NC Potential Medicaid Data Security Vulnerabilities


The North Carolina State Medicaid agency (State agency) did not implement necessary information system general controls to ensure proper Medicaid data security measures, according to an OIG report. The State agency contracts with CRSA, Inc. for...

HIMSS Stresses Proactive Healthcare Cybersecurity Measures


Regular risk assessments, updating business continuity plans, and implementing a cybersecurity framework are all key ways for providers to follow a proactive healthcare cybersecurity approach, according to HIMSS Director of Privacy and Security...

New Mexico Medicaid Data Security Requires Improvements


The New Mexico Human Services Department (HSD) has certain vulnerabilities in its Medicaid data security, which could put HSD operations at risk, according to a recent OIG investigation. HSD migrated from a legacy eligibility system to the Automated...

Improve Healthcare Authentication with New NIST Guide


NIST recently released updated digital identity guidelines for federal agencies looking to create a secure authentication process. While not designed for healthcare authentication specifically, the guidelines could help the industry ensure a...

Texas Healthcare Privacy, Security Focus in Recent Partnership


Texas covered entities will now have assistance in working toward healthcare privacy and security compliance measures through a recent partnership between the Texas Health Services Authority (THSA) and Third Rock Incorporated. THSA will...

Medical Device Cybersecurity Top Challenge to IoT Ecosystem


Individuals working in the Internet of Things (IoT) connected medical device ecosystem are most concerned with potential medical device cybersecurity issues, according to a recent Deloitte poll. Nearly one-third of respondents – 35.6 percent...

How HHS’ HCCIC Will Improve Healthcare Cybersecurity


HHS’ Healthcare Cybersecurity and Communications Integration Center (HCCIC) is a critical step toward improving healthcare cybersecurity and will also augment the Department of Homeland Security’s own National Cybersecurity and Communications...

DirectTrust Sees 15% PHI Sharing Increase for Q2 2017


There has been a continued increase in the number of organizations utilizing PHI sharing through Direct exchange, with a 15 percent increase in the number of trusted Direct addresses able to share PHI, according to a DirectTrust statement. The...


SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
Data Breaches

Our privacy policy

no, thanks