Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

Healthcare hacker sentenced to 10 years in prison
Robert Purbeck, 45, of Georgia was found with data on more than 132,000 individuals taken from various breaches, including multiple providers, a police station and a city government.
Ransomware group deploys ticking clock to threaten Georgia hospital
Memorial Hospital and Manor announced the data breach through Facebook on Nov. 3. The cybercrime group Embargo has taken credit for the incident, claiming to have 1.15TB of stolen information.
Hackers were inside an Iowa hospital’s network for two weeks
St. Anthony Regional Hospital confirmed patient data was taken by cybercriminals, but the August incident is still being investigated.
Microsoft: Ransomware hit nearly 400 healthcare entities this year—a 300% rise since 2015
A study from Microsoft on the impact of ransomware found unaffected nearby hospitals see a rise in stroke and cardiac arrest cases, in addition to an influx of patients.
Feds make it official: Change data breach was the largest in healthcare history, impacting 100M
Updated reporting from HHS shows UnitedHealth Group's estimate that roughly one-third of people in the U.S. would be affected was correct.

Mississippi's Medicaid division notifies 5,000 of potential breach

The Mississippi Division of Medicaid (DOM) has notified 5,220 individuals of a potential breach of protected health information. The exposure occurred when emails containing patient information were sent unencrypted.

June 12, 2017

HHS releases report on impact of WannaCry ransomware attack

The WannaCry ransomware cyber-attack was unprecedented in its size and scope. To respond, HHS has released a series of reports assisting organizations on how to respond to such attacks. In the latest report, HHS outlines the on-going impact of the WannaCry incident.

June 6, 2017

HHS announces Move Health Data Forward Challenge winners

HHS's Office of the National Coordinator for Health Information Technology (ONC) has announced the winners of their Move Health Data Forward Challenge, which focused on the development of applications for secure sharing of patient health information and awarded winners $50,000.

June 2, 2017

56% of healthcare delivery organizations believe an attack on medical devices is imminent

Medical device technology has brought an improved sense of care to healthcare organizations, yet also bring along the risk of a data breach when not maintained. A new survey by Ponemon Institute, an information technology research organizations, found medical devices to be especially susceptible to attack.

May 31, 2017

2 in 3 would consider leaving provider after ransomware attack

After the WannaCry ransomware attack in mid-May, interest in cyber security across all industries has spiked. A survey conducted by Carbon Black included interviews with 5,000 people to evaluate the public’s perception of ransomware.

May 31, 2017

Molina Healthcare investigating breach of patient portal

Managed care and Affordable Care Act exchange insurer Molina Healthcare has shut down its online patient portal after a potential data breach may have exposed protected health information for millions of customers.

May 30, 2017

Bayer medical devices in the US infected by WannaCry

A spokesperson from Bayer has revealed two reports of U.S. customers having devices infected by the WannaCry ransomware. 

May 26, 2017

Top findings of what CIOs think about data security, clinical mobility

The main responsibility of chief information officers (CIOs) is to implement technology within their healthcare system to improve patient care while keeping data secure. A recent survey, conducted by CHIME and presented by Spok, analyzes exactly what hospital CIOs think about data security and clinical mobility.

May 25, 2017

Around the web

Cardiovascular Business

Payment cuts and beyond: Key takeaways for cardiologists from the 2025 Medicare Physician Fee Schedule

The American College of Cardiology has shared its perspective on new CMS payment policies, highlighting revenue concerns while providing key details for cardiologists and other cardiology professionals.

AI in Healthcare

A modest proposal to rally AI regulators around a simple game plan

As debate simmers over how best to regulate AI, experts continue to offer guidance on where to start, how to proceed and what to emphasize. A new resource models its recommendations on what its authors call the “SETO Loop.”

Cardiovascular Business

FDA commissioner urges clinicians to join fight against medical misinformation

FDA Commissioner Robert Califf, MD, said the clinical community needs to combat health misinformation at a grassroots level. He warned that patients are immersed in a "sea of misinformation without a compass."

Cybersecurity

Healthcare hacker sentenced to 10 years in prison

Ransomware group deploys ticking clock to threaten Georgia hospital

Hackers were inside an Iowa hospital’s network for two weeks

Microsoft: Ransomware hit nearly 400 healthcare entities this year—a 300% rise since 2015

Feds make it official: Change data breach was the largest in healthcare history, impacting 100M

Around the web