Healthcare Information Security

Cybersecurity News

CHIME Says Healthcare Cybersecurity Should Be Innovation Focus


Healthcare cybersecurity should be one focus area of a public-private workgroup that HHS is suggesting to examine healthcare innovation and investment, argued the College of Healthcare Information Management Executives (CHIME) in its...

Connected Medical Device Security Increasing Healthcare Worry


Medical device security will become an increasing concern for healthcare organizations, particularly as more of these devices are connected to the Internet, internal networks, and Wi-Fi, predicted a new report by Transparency Market...

Vulnerable APIs Could Be Used to Execute a Healthcare Data Breach


Application programming interfaces (APIs) will be exploited more by hackers to gain access to healthcare organizations and execute a healthcare data breach or other type of cyberattack, according to the June 2018 HIMSS Healthcare and...

Cybercriminals Move from Ransomware Attacks to Crypto Mining


The cyberthreat landscaping is changing rapidly. For example, ransomware attacks, which have devasted the healthcare industry, are being replaced by cryptocurrency mining attacks among cybercriminals motived by financial gain, according to...

Cybersecurity Vulnerabilities Afflict Medtronic Heart Monitor


The Medtronic MyCareLink handheld patient monitor, used for patients with an implantable heart device, suffers from a number of cybersecurity vulnerabilities that could allow an attacker to gain access to the operating system and product...

Cybercriminals Target Hospitals with SamSam Ransomware Attacks


Cybercriminals increased their SamSam (aka SAMSA) ransomware attacks against the healthcare sector in the first quarter of 2018, with numerous cases reported of hospitals paying the ransom to regain access to their systems, according...

Recent WannaCrypt Ransomware Attack Not Really Ransomware


When you mention the word WannaCry, health IT security folks break into a cold sweat. They remember the havoc that the WannaCry ransomware attack wreaked on the healthcare industry last year. Cybercriminals claiming to be from the...

Healthcare Internet Crimes Cost Victims $925,849 Last Year


Healthcare internet crimes cost victims $925,849 last year, according to the FBI Internet Crime Complaint Center’s (IC3) 2017 Internet Crime Report.  The report includes stats on internet crime complaints received by the...

Top 10 Cybersecurity Best Practices for Healthcare CISOs


Faced with an onslaught of threats these days, healthcare chief information security officers (CISOs) need to take a deep breath and focus on cybersecurity best practices. The number and frequency of these threats—ransomware,...

Siemens Flags Cybersecurity Vulnerabilities in RAPID Blood-Gas Analyzers


Siemens Healthineers is warning about two cybersecurity vulnerabilities affecting its RAPID blood-gas analyzers that could enable attackers to compromise the confidentiality, integrity, and availability of the devices.  The...

Cryptocurrency Mining Tops Ransomware Attacks as New Cyberthreat


While ransomware attacks continue to preoccupy the minds of healthcare IT security pros, a new threat is emerging—cryptocurrency mining. Not as devastating as ransomware, cryptocurrency mining malware can still degrade system...

Natus Plugs 8 Cybersecurity Vulnerabilities in EEG Software


Natus Medical has updated its NeuroWorks software to plug eight cybersecurity vulnerabilities that could enable an attacker to get control of the Natus Xltek electroencephalogram (EEG) device and crash it, according to a June 14 ICS-CERT...

Healthcare Orgs, Device Makers Debate Cybersecurity Vulnerabilities


A number of medical organizations have submitted recommendations to the House Energy and Commerce Committee on how to reduce cybersecurity vulnerabilities in aging healthcare IT systems and medical devices under the committee’s...

Organizations Lack Adequate Budget for Medical Device Security


Despite recognizing medical device security as a priority, only 37 percent of more than 100 healthcare practitioners had budgets to implement their device security strategy, according to a HIMSS survey. Most respondents (85%) said...

Court Dismisses FTC Order on LabMD’s Data Security Lapses


In a long anticipated ruling, a federal appeals court has thrown out a Federal Trade Commission (FTC) order directing the now-defunct medical testing firm LabMD to overhaul its data security program. In 2013, the FTC filed a complaint...

Congress Turns Up Heat on HHS About Cybersecurity Threat Report


Congress is taking HHS to task about problems with the department’s cybersecurity threat report required by the Cybersecurity Information Sharing Act of 2015. The HHS Cyber Threat Preparedness Report (CTPR) “omitted or lacked...

Meltdown, Spectre Variants Could Endanger Healthcare Data Security


New variants of the Meltdown and Spectre security vulnerabilities were recently discovered by researchers, possibly putting healthcare data security at risk. The vulnerabilities affect hundreds of millions of processors used in desktop...

Taking a Practical Approach to Healthcare Data Security


Let’s be honest. If you start to discuss all the various aspects of healthcare data security, it’s easy to get overwhelmed quickly. There are so many parts and pieces when it comes to working with proper healthcare security...

Ransomware Attacks Topped List of Cyber Insurance Claims


More than one-quarter of cyber insurance claims received by AIG last year were the result of ransomware attacks, the largest percentage of any cyberattack type, according to the insurance giant’s 2017 cyber insurance claim...

AHA Backs Providers’ Inclusion in FDA Medical Device Security Board


The FDA should include healthcare providers on the medical device security board proposed in the agency’s recently released Medical Device Safety Action Plan, argued the American Hospital Association (AHA). According to the...


SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
Data Breaches

Our privacy policy

no, thanks

Continue to site...