Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

Healthcare hacker sentenced to 10 years in prison
Robert Purbeck, 45, of Georgia was found with data on more than 132,000 individuals taken from various breaches, including multiple providers, a police station and a city government.
Ransomware group deploys ticking clock to threaten Georgia hospital
Memorial Hospital and Manor announced the data breach through Facebook on Nov. 3. The cybercrime group Embargo has taken credit for the incident, claiming to have 1.15TB of stolen information.
Hackers were inside an Iowa hospital’s network for two weeks
St. Anthony Regional Hospital confirmed patient data was taken by cybercriminals, but the August incident is still being investigated.
Microsoft: Ransomware hit nearly 400 healthcare entities this year—a 300% rise since 2015
A study from Microsoft on the impact of ransomware found unaffected nearby hospitals see a rise in stroke and cardiac arrest cases, in addition to an influx of patients.
Feds make it official: Change data breach was the largest in healthcare history, impacting 100M
Updated reporting from HHS shows UnitedHealth Group's estimate that roughly one-third of people in the U.S. would be affected was correct.

Fitness tracking app Strava reveals locations of US military bases

Strava, a fitness tracking app that uses data from wearables like Fitbit, has accidently revealed the locations of U.S. military bases in Afghanistan, Iraq and Syria.

January 30, 2018

Ransomware detections against businesses rose 90% in 2017

Ransomware attacks against consumers have risen 93 percent in 2017, while ransomware against businesses rose 90 percent, according the Malwarebytes Cybercrime Tactics and Techniques: 2017 State of Malware Report.

January 30, 2018

mHealth apps do not provide adequate security when sending information

Mobile health (mHealth) applications are becoming an increasingly used avenue for patients and providers to send data, but many apps do not provide proper security when transmitting data, according to a study published in the Journal of Medical Internet Research.

January 3, 2018

HHS Office for Civil Rights launches tools to combat the US opioid epidemic

The U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR) have launched new tools and initiatives to assist in elevating he opioid epidemic while also implementing the 21st Century Cures Act (Public Law 114-255).

December 19, 2017

83% of US physicians have experienced a cyberattack

According to a study released by Accenture and the American Medical Association (AMA), 83 percent of American physicians have experienced some form of a cybersecurity breach.

December 14, 2017

House Committee urges HHS to improve security on medical devices

In a letter written to HHS Acting Secretary Eric D. Hagan, House of Representatives Committee on Energy and Commerce Chairman Greg Walde, R-Oregon, urged the agency to develop a sector-wide plan of action in deploying a “bill of materials” (BOM) for healthcare technology.

November 29, 2017

Privacy remains top barrier to patients sharing EMRs

Privacy concerns are the main barrier in getting patients to share electronic medical records (EMRs) with healthcare providers, according to a study published in the Journal of Medical Internet Research.

November 29, 2017

Ransomware tops list of 10 health technology hazards

Healthcare technology, while providing patients and professionals with advanced care solutions, has weaknesses in protecting patient information, according to the Top 10 Health Technology Hazards for 2018 report conducted by ECRI Institute.

November 7, 2017

Around the web

Cardiovascular Business

Payment cuts and beyond: Key takeaways for cardiologists from the 2025 Medicare Physician Fee Schedule

The American College of Cardiology has shared its perspective on new CMS payment policies, highlighting revenue concerns while providing key details for cardiologists and other cardiology professionals.

AI in Healthcare

A modest proposal to rally AI regulators around a simple game plan

As debate simmers over how best to regulate AI, experts continue to offer guidance on where to start, how to proceed and what to emphasize. A new resource models its recommendations on what its authors call the “SETO Loop.”

Cardiovascular Business

FDA commissioner urges clinicians to join fight against medical misinformation

FDA Commissioner Robert Califf, MD, said the clinical community needs to combat health misinformation at a grassroots level. He warned that patients are immersed in a "sea of misinformation without a compass."

Cybersecurity

Healthcare hacker sentenced to 10 years in prison

Ransomware group deploys ticking clock to threaten Georgia hospital

Hackers were inside an Iowa hospital’s network for two weeks

Microsoft: Ransomware hit nearly 400 healthcare entities this year—a 300% rise since 2015

Feds make it official: Change data breach was the largest in healthcare history, impacting 100M

Around the web