Healthcare Information Security

Cybersecurity News

NCCoE Unveils Vendor Partners for Medical Device Security Project

by

The NIST-backed National Cybersecurity Center of Excellence (NCCoE) unveiled this week an initial set of vendor partners for a medical device security project called Securing Picture Archiving and Communication Systems (PACS). The vendor...

Healthcare Organizations Struggle with Vendor IT Security Risks

by

BOSTON – Healthcare organizations have a range of approaches for assessing and managing the IT security risks posed by third-party vendors, one of the biggest sources of frustration for security teams. St. Luke’s Health System...

SRA Tool 3.0 Expands Application to More Health Data Security Risks

by

OCR and ONC have updated their security risk assessment (SRA) tool (3.0) to improve usability and expand its application to a broader range of health data security risks. The agencies developed the tool to help small to medium-sized...

Risk Posed By 3rd-Party Services Is Big Healthcare Security Worry

by

BOSTON—Security risks posed by integration of third-party patient services will be an ongoing healthcare security concern for organizations, commented Johns Hopkins University and Medicine CISO Darren Lacey during a panel...

FDA Warns of Cybersecurity Vulnerabilities in CareLink Programmers

by

The FDA has issued a medical device safety alert about cybersecurity vulnerabilities in Medtronic’s CareLink programmers that could enable an attacker to change the functionality of the programmer or the implanted pacemaker it...

‘Payment Notification’ Is Top Healthcare Phishing Attack Subject

by

The term “Payment Notification” is the top healthcare phishing attack subject, appearing in 58 percent of healthcare phishing attack campaigns in 2018, according to the latest data from Cofense. Other popular subjects in...

OIG Forms Team to Protect HHS, Boost Cybersecurity Best Practices

by

The HHS OIG has formed a multidisciplinary cybersecurity team composed of auditors, evaluators, investigators, and attorneys from various HHS agencies to help protect department data and systems and foster cybersecurity best practices...

Same Cybersecurity Vulnerability Uncovered in Different Devices

by

Security researcher Dan Regalado at Zingbox uncovered the same cybersecurity vulnerability — information exposure through an error message — in two medical devices made by different manufacturers. Regalado then notified the...

California Court Denies Motion to Dismiss Health Data Breach Suit

by

The California Superior Court has denied a motion to dismiss a class action lawsuit against A.J. Boggs & Company for a health data breach that exposed confidential medical records of 93 individuals with HIV, Lambda Legal, who is...

Healthcare IT Execs Lack Confidence in Medical Device Security

by

More than 60 percent of healthcare IT executives lack confidence that their current medical device security strategy protects patient safety and prevents disruptions in care. The survey found that only 39 percent of respondents were...

Healthcare Data Security Threatened by APTs Targeting MSPs

by

Advanced persistent threats (APTs) are targeting managed service providers’ networks, endangering healthcare data security and data security in other US critical infrastructure sectors, warned the National Cybersecurity and...

Remote Access System Hacking Is No. 1 Patient Safety Risk

by

Hackers attacking healthcare through remote access systems and disrupting operations is the number one patient safety risk, according to the ECRI Institute’s annual Top 10 Health Technology Hazards for 2019. ECRI Institute said it...

HPH SCC Set To Issue Cybersecurity Best Practices for Healthcare

by

The Healthcare and Public Health Sector Coordinating Council (HPH SCC) soon plans to release voluntary cybersecurity best practices for medical device manufacturers and healthcare providers, the groups announced Oct. 1 on the kickoff...

Partnership Uses Blockchain Technology To Secure Fertility Data

by

A partnership between Donor Concierge and ALTR will use blockchain technology to secure health data and patient privacy for FRTYL, a service that links fertility agencies and clinics with parents seeking infertility...

FDA Unveils MITRE’s Medical Device Security Playbook

by

The FDA released Oct. 1 a medical device security playbook it developed with MITRE to advise healthcare organizations on securing their medical equipment.  The playbook is intended to enable healthcare organizations plan for and...

NIST Warns About Cybersecurity Vulnerabilities in Healthcare IoT

by

NIST has issued a draft report examining the cybersecurity vulnerabilities and privacy risks posed by Internet of Things (IoT) devices, including healthcare IoT.  “Many organizations are not necessarily aware they are using a...

FDA’s Cybersecurity Unit Would Set Up CyberMed Safety Board

by

The FDA’s proposed cybersecurity unit would help establish the public-private CyberMed Safety Board mentioned in the FDA's medical device safety action plan issued in April, FDA spokeswoman Stephanie Caccomo recently told...

VON Canada Recovers from Devastating Ransomware Attack

by

Home-based healthcare organization VON Canada is recovering from a ransomware attack that shutdown all its computers systems, forcing it to revert to manual operations for scheduling care and exchanging patient information. VON Canada...

MGH Study Finds Major Increase in US Healthcare Data Breaches

by

Since 2010, the total number of healthcare data breaches has increased steadily every year — except in 2015 — from 199 in 2010 to 344 in 2017, according to an analysis of US health care data conducted by two Massachusetts...

While New Strains Slow, Ransomware Attacks Continue Apace

by

While the emergence of new ransomware strains has slowed, the total number of ransomware samples is growing, fueling continued ransomware attacks, according to the latest data from McAfee Labs. The number of ransomware samples increased...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...