Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

Hackers were inside an Iowa hospital’s network for two weeks
St. Anthony Regional Hospital confirmed patient data was taken by cybercriminals, but the August incident is still being investigated.
Microsoft: Ransomware hit nearly 400 healthcare entities this year—a 300% rise since 2015
A study from Microsoft on the impact of ransomware found unaffected nearby hospitals see a rise in stroke and cardiac arrest cases, in addition to an influx of patients.
Feds make it official: Change data breach was the largest in healthcare history, impacting 100M
Updated reporting from HHS shows UnitedHealth Group's estimate that roughly one-third of people in the U.S. would be affected was correct.
CMS contractor takes $1.2M loss after data breach, DOJ lawsuit
Federal Data Solutions allegedly failed to encrypt screenshots of patient data, stored on a server being paid for with Medicare funds.
Boston Children's physician group suffers data breach
Cybercrime group BrianLian took credit for the attack. It has been responsible for over 60 ransomware attacks in 2024 alone.

1 in 3 healthcare organizations have experienced a cyberattack

A survey conducted by cybersecurity provider Imperva has found that more than one in three healthcare organizations have experienced a cyberattack within the last year, while one in 10 have paid a ransom.

May 24, 2018

Black Book: Fortified Health top cybersecurity provider for medical devices

Black Book Market Research, a healthcare and public opinion research company, has named Fortified Health Security as the top cybersecurity service vendor in the "medical device and internet of things" category.

May 23, 2018

Organizations are trying to improve security, but employees remain an obstacle

While organizations have made investments into data security tools, employees remain a major barrier to achieving full privacy, according to a survey commissioned by Biscom.

May 23, 2018

Serial killer case raises concerns about privacy, security with DNA tests

In solving a cold case involving a serial rapist and murderer who terrified Northern California for decades, police used a novel approach to track down the killer. Detectives accessed open-source genetic data to locate relatives of a person whose genetic material was collected at a crime scene.

May 2, 2018

5 usability issues in EHRs that may harm patients

While electronic health records (EHRs) have improved the safety and quality of patient health information, the shift from paper to digital interfaces has introduced a new set of barriers that may contribute to patient harm.

April 20, 2018

Lacking trust in security, privacy reduces patient trust in health IT

Privacy and security concerns are linked to reduced patient access of health records and trust in health information technology (HIT). Findings were published April 11 in the Journal of Medical Internet Research.

April 16, 2018

Healthcare cybersecurity claims represent 28% of total breach costs

Healthcare cybersecurity insurance claims in 2017 made up 17 percent of total claims—but accounted for 28 percent of costs related to breaches, roughly $65 million of a total $229 million, according to the 2017 Cyber Claims Study by NetDiligence.

April 9, 2018

Facebook ends project to share data with healthcare orgs, hospitals

Facebook has been in the news lately, having to explain how millions of users' data have been misused. Now it has announced an end to plans to share user data with several major U.S. hospitals and organizations.

April 6, 2018

Around the web

Cardiovascular Business

Q&A: Why are cardiovascular devices involved in so many recalls? FDA policies may be to blame

Cardiovascular devices are more likely to be in a Class I recall than any other device type. The FDA's approval process appears to be at least partially responsible, though the agency is working to make some serious changes. We spoke to a researcher who has been tracking these data for years to learn more.

Cardiovascular Business

Cardiologist compensation still rising, especially in invasive and interventional cardiology

Updated compensation data includes good news for multiple subspecialties. The new report also examines private equity's impact on employment models and how much male cardiologists earn compared to females.

Cardiovascular Business

FDA’s tirzepatide decision creates uncertainty for patients—and leads to a lawsuit

When drugs are on the FDA’s shortage list, outsourcing facilities can produce their own compounded versions. When the FDA removed tirzepatide from that list with no warning, it created a considerable amount of chaos both behind the scenes and in pharmacies all over the country.

Cybersecurity

Hackers were inside an Iowa hospital’s network for two weeks

Microsoft: Ransomware hit nearly 400 healthcare entities this year—a 300% rise since 2015

Feds make it official: Change data breach was the largest in healthcare history, impacting 100M

CMS contractor takes $1.2M loss after data breach, DOJ lawsuit

Boston Children's physician group suffers data breach

Around the web