Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

Number of Americans impacted by Change Healthcare breach nears 200M
The last count submitted to HHS in October pegged the number at 100 million. Now that figure sits at 190 million, and the company continues its investigation.
Report: 84% of healthcare organizations identified a data breach last year
Phishing incidents were the most common type of attack on a healthcare entity, which is consistent with what's seen across all industries.
Dental chain involved in ransomware coverup fined $350K
A regional chain of clinics that lied through its teeth about a data breach has agreed to pay a $350,000 settlement to resolve multiple allegations it violated HIPAA.
FBI seeking extradition of Israeli prisoner accused of $500M in ransomware attacks
Rostislav Panev is facing fraud and cybercrime charges in Israel, where he has been accused of being a software developer for hacker group LockBit.
Data breach at chain of clinics impacts 450K patients
The Center for Vein Restoration has notified patients about a data breach that occurred in October, exposing financial and medical information on patients from across the U.S.

HHS issues $4.3M fine to Maryland provider over HIPAA violation

The U.S. Department of Health and Human Services (HHS) Office for Civil Rights has issued a notice of determination finding that Cignet Health of Prince Georges County, Md., violated the Privacy Rule of HIPAA. HHS has imposed a civil money penalty of $4.3 million for the violations, representing the first financial penalty issued by HHS for a covered entitys violations of HIPAA.

StealthWatch 6.0 unveiled

Networking company Lancope has unveiled the next generation of its StealthWatch System, which leverages flow data to deliver end-to-end network visibility and greater forensic intelligence for industries, including healthcare.

Univ. of Iowa Hospital discloses potential data breach

The University of Iowa Hospitals has disclosed a potential data breach involving the EMRs of several University of Iowa football players.

AHIMA raises concern over HHS privacy rules

In response to the U.S. Department of Health and Human Services (HHS) Office of Civil Rights' notice of proposed rulemaking on modifications to the HIPAA Privacy, Security and Enforcement rules under the HITECH Act, the American Health Information Management Association (AHIMA) raised concerns about the sale of patient health information when an organization is being absorbed by a second organization.

Alleviating ICD-10 concerns, what you need to know

As the date to make the switch from ICD-9-CM codes to ICD-10-CM and ICD-10-PCS looms over facilities, a webinar featured by the Centers for Medicare & Medicaid Services (CMS) Tuesday aimed to ease the burden by communicating how to make the transition go smoothly and ease some of the concerns.

HHS publicly posts list of data breach notifications

  A list of the covered entities that have reported health information data breaches impacting more than 500 people now has been posted by the Office of Civil Rights of the Department of Health and Human Services (HHS) on its Web site.

AHIMA issues meaningful use white papers for industry discussion

The American Health Information Management Association (AHIMA) has made available a series of short white papers analyzing the recently released notice of proposed rulemaking on meaningful use from the Office of the National Coordinator for Health IT.

Dowling tapped for AHIMA CEO position

The Board of Directors for the American Health Information Management Association (AHIMA) recently announced Alan F. Dowling, PhD, will succeed Linda Kloss as CEO of the Chicago-based health information management (HIM) organization.

Around the web

Cardiovascular Business

Philips to sell its emergency care business to private equity firm

Bridgefield Capital, founded in 2015, has previously invested in such popular brands as Cirque Du Soleil, Del Monte and Quiksilver. This transaction is expected to be completed in the second half of 2025.

AI in Healthcare

Nat’l Academy of Medicine sets ‘priorities for action’ as healthcare mulls next moves with AI

Given the precarious excitement of the moment—or is it exciting precarity?—policymakers and healthcare leaders must set directives guiding not only what to do with AI but also when to do it.

Cardiovascular Business

Biden chooses semaglutide for next round of Medicare price negotiations—Trump gets final say

The final list also included diabetes drugs sold by Boehringer Ingelheim and Merck. The first round of drug price negotiations reduced the Medicare prices for 10 popular drugs by up to 79%.

Cybersecurity

Number of Americans impacted by Change Healthcare breach nears 200M

Report: 84% of healthcare organizations identified a data breach last year

Dental chain involved in ransomware coverup fined $350K

FBI seeking extradition of Israeli prisoner accused of $500M in ransomware attacks

Data breach at chain of clinics impacts 450K patients

Around the web