Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

Hackers were inside an Iowa hospital’s network for two weeks
St. Anthony Regional Hospital confirmed patient data was taken by cybercriminals, but the August incident is still being investigated.
Microsoft: Ransomware hit nearly 400 healthcare entities this year—a 300% rise since 2015
A study from Microsoft on the impact of ransomware found unaffected nearby hospitals see a rise in stroke and cardiac arrest cases, in addition to an influx of patients.
Feds make it official: Change data breach was the largest in healthcare history, impacting 100M
Updated reporting from HHS shows UnitedHealth Group's estimate that roughly one-third of people in the U.S. would be affected was correct.
CMS contractor takes $1.2M loss after data breach, DOJ lawsuit
Federal Data Solutions allegedly failed to encrypt screenshots of patient data, stored on a server being paid for with Medicare funds.
Boston Children's physician group suffers data breach
Cybercrime group BrianLian took credit for the attack. It has been responsible for over 60 ransomware attacks in 2024 alone.

73% of physicians share EMR passwords

Maintaining a high level of security in electronic medical records (EMRs) requires physicians have unique user IDs and passwords, but, according to a study published in Health Informatics Research, 73.6 percent of physicians have received the password of another staff member.

September 28, 2017

Lock and key: Heart scan offers improved cybersecurity

Researchers from the University of Buffalo have developed a computer security system that uses the dimensions of users' heart as their log-in.

September 25, 2017

Photo, video sharing app complies with regulations to protect patient data

Researchers are developing platforms to securely and quickly send data to and from smartphones. A new mobile application developed to assist providers in meeting patient privacy regulation allows for the sharing and storing of patient-related photos, videos and audio.

September 1, 2017

Mobile apps for dementia patients lack security measures

The lack of cybersecurity in mobile applications meant to assist dementia patients and their caregivers could put patients' personal health information at risk, according to researchers at McLean Hospitals in Belmont, Massachusetts, and clinicians at Harvard Medical School. A study in the American Journal of Geriatric Psychiatry examined app security policies and provided recommendations.

August 22, 2017

Cyberattacks on 3D printers result in defective products

Cyberattacks occur on many types of devices—including 3D printers. A new study, conducted by researchers at Rutgers University-New Brunswick and Georgia Institute of Technology, examines methods in protecting 3D printers for improved cybersecurity.

August 16, 2017

Cybersecurity on DNA sequencing tools failed to protect data

A recent study form the University of Washington found that security measures on patient's genetic tests are poorly maintained. The unprotected DNA information poses an additional threat because it can be encrypted with malicious code and harm the computer.

August 10, 2017

HIMSS: 7 points showing healthcare cybersecurity is improving

Facing an increasing amount of cyberattacks, healthcare organizations are building up their cybersecurity programs, according to the 2017 HIMSS Cybersecurity Survey. After speaking with 126 health information technology leaders, researchers outlined current security measures to show points of improvement and explore how the industry can prevent future attacks.

August 9, 2017

Ransomware attacks in healthcare industry increases by 133%

The healthcare industry has fought an uphill battle against hackers in 2017—and it shows in the latest Beazley Breach Insights report. The report, conducted by the cyber and data breach response insurance firm, found the rate of ransomware attacks had increased by 50 percent in the first quarter of 2017, with demands up 133 percent.

August 3, 2017

Around the web

Cardiovascular Business

Q&A: Why are cardiovascular devices involved in so many recalls? FDA policies may be to blame

Cardiovascular devices are more likely to be in a Class I recall than any other device type. The FDA's approval process appears to be at least partially responsible, though the agency is working to make some serious changes. We spoke to a researcher who has been tracking these data for years to learn more.

Cardiovascular Business

Cardiologist compensation still rising, especially in invasive and interventional cardiology

Updated compensation data includes good news for multiple subspecialties. The new report also examines private equity's impact on employment models and how much male cardiologists earn compared to females.

Cardiovascular Business

FDA’s tirzepatide decision creates uncertainty for patients—and leads to a lawsuit

When drugs are on the FDA’s shortage list, outsourcing facilities can produce their own compounded versions. When the FDA removed tirzepatide from that list with no warning, it created a considerable amount of chaos both behind the scenes and in pharmacies all over the country.

Cybersecurity

Hackers were inside an Iowa hospital’s network for two weeks

Microsoft: Ransomware hit nearly 400 healthcare entities this year—a 300% rise since 2015

Feds make it official: Change data breach was the largest in healthcare history, impacting 100M

CMS contractor takes $1.2M loss after data breach, DOJ lawsuit

Boston Children's physician group suffers data breach

Around the web