Healthcare Information Security

Cybersecurity News

CMS Would Drop Security Risk Analysis from Interoperability Score

by

CMS is proposing that the Protect Patient Health Information objective and its associated measure, security risk analysis, would no longer be scored as a measure but would act as a prerequisite for a participating clinician to earn any...

HHS Fails To Fix Cybersecurity Vulnerabilities, Putting PHI At Risk

by

HHS has failed to remedy cybersecurity vulnerabilities in its systems that could put PHI at risk, warned the GAO in a report released July 25. The GAO cited problems at CMS that threaten to compromise Medicare beneficiary data and the...

Up to $150K for Victims of Flowers’ Healthcare Data Breach

by

More than 1,200 people could receive up to $150,000 in payments following the tentative settlement of a class-action lawsuit against Alabama-based Flowers Hospital for a 2014 healthcare data breach, TV station WTVY reported on July...

CISOs Stockpile Cryptocurrency in Case of Ransomware Attack

by

The threat of a ransomware attack has led nearly three-quarters of CISOs to stockpile cryptocurrency to pay cybercriminals, according to survey of 1,700 IT, security, and business leaders in the United States, the UK, and Germany by...

Healthcare Data Security Worries Discourage Virtual Care Use

by

Concerns about healthcare data security and patient privacy are holding physicians back from using virtual care technology, according to a survey of physicians and consumers by Deloitte. One-third of physicians cited data security and...

C-Suite May Lack Awareness of Healthcare Supply Chain Risk

by

A majority of healthcare industry respondents think their organization’s leadership may lack awareness of healthcare supply chain risk, according to a survey by Vanson Bourne on behalf of endpoint security firm CrowdStrike. A full...

Despite Flashy Attacks, Healthcare Ransomware Attacks Decline

by

Even with some well-publicized ransomware attacks against healthcare organizations this year, such as Allscripts and LabCorp, healthcare ransomware attacks are on the decline, according to the latest analysis by cybersecurity firm...

Strong Healthcare Data Security Needed for EHR Use in Clinical Trials

by

The FDA is recommending that organizations and individuals conducting clinical investigations have strong healthcare data security and privacy controls in place when using EHR data for agency-regulated research. In its recently issued Use...

ALYN Hospital Employs Ericom Shield to Bolster Healthcare Data Security

by

Israel’s ALYN Hospital recently turned to Ericom Shield to bolster its healthcare data security, particularly for its web-based communication. ALYN is an Israeli hospital for rehabilitation of children with physical, respiratory,...

FTC Wants Expanded Authority in Data Security, Privacy

by

While HHS is the primary federal agency that enforces HIPAA Security and Privacy Rules, the FTC has expanded its enforcement activities in data security and privacy, including taking on now-defunct medical testing firm LabMD over poor data...

Cass Regional Finally Recovers from Devastating Ransomware Attack

by

Cass Regional Medical Center finally has its EHR system back online and is no longer diverting emergency patients to other hospitals a week after it suffered a ransomware attack. The initial attack, reported by the Missouri-based hospital...

Response to Spectre, Meltdown Cybersecurity Vulnerabilities Queried

by

US lawmakers want answers from the Software Engineering Institute’s (SEI) CERT Coordination Center (CERT-CC) to questions about the industry's response to the Spectre and Meltdown cybersecurity vulnerabilities disclosed in...

LabCorp’s Network Security Breach May Have Exposed PHI of Millions

by

After recently dodging a legal bullet over an alleged HIPAA violation, LabCorp is now facing a network security breach that forced the North Carolina-based laboratory diagnostics firm to shut down its IT network, possibly placing PHI of...

Patient Safety Concerns Driving Medical Device Security Investment

by

Medical device security and patient data privacy are two of the areas in which the healthcare industry is investing to curb the costs of adverse patient safety events, according to a study by Frost & Sullivan. Other areas of...

Allscripts Wants Ransomware Attack Class-Action Lawsuit Dismissed

by

EHR vendor Allscripts wants a district court judge in Illinois to dismiss a class-action lawsuit filed by Florida-based Surfside Non-Surgical Orthopedics over the SamSam ransomware attack that encrypted patient data and took...

Health Plan Victims of Healthcare Data Breaches Surge 1,000%

by

The total number of individuals impacted by healthcare data breaches at health plans surged by more than 1,000 percent in the first five months of 2018, according to Fortified Health Security’s 2018 Mid-Year Horizon Report. Health...

Healthcare Data Breach Costs Remain Highest Among Industries

by

In their 2018 Cost of a Data Breach Report, IBM and the Ponemon Institute found that healthcare data breach costs average $408 per record, the highest of any industry for the eighth straight year and nearly three times higher than the...

Children’s Mercy Faces Lawsuit Over Healthcare Data Breach

by

A class action lawsuit was filed this week against Kansas City, Missouri-based Children’s Mercy Hospital in response to a healthcare data breach that affected more than 60,000 individuals earlier this year, the Kansas City Star...

Insider Health Data Security Threats Bigger Concern than External

by

Many healthcare professionals are more concerned about insider threats to health data security than external breaches, according to a survey by HIMSS on behalf of SailPoint. There is an acute level of concern about the threats posed...

Cass Diverts Patients, Shuts Down EHR Due to Ransomware Attack

by

Cass Regional Medical Center in Harrisonville, Missouri, has diverted trauma and stroke patients and shut down its EHR system due to a ransomware attack, the hospital said in a July 9 statement on its website. Cass became aware of the...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...