Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

Experts weigh in on elevating CISO within HHS to improve cybersecurity

Several data security experts testified before a congressional panel in favor of a House proposal to elevate HHS’s chief information security officer (CISO) to a separate office, while one expressed concerns about making the office a presidential appointment.

ACLU: Myriad Genetics kept data from breast cancer patients

The American Civil Liberties Union has filed a complaint on behalf of breast cancer patients who claim Utah-based Myriad Genetics violated HIPAA law by refusing to turn over the patient’s own genetic data.

Two heavy hitters slug it out over MU’s role in breaches

Meaningful Use may not have launched the hacker express into healthcare, but it surely seems to have greased the rails. 

Thumbnail

OCR: Cybersecurity needs to be a priority

Federal regulators urged healthcare organizations to have plans in place to deal with security issues such as data breaches involving patient and business information.

Hospital faces criticism for filming surgeries

In stepping up its surveillance after anesthesia drugs started going missing, Sharp Grossmont Hospital filmed women undergoing surgery without their permission.

Brookings report asks OCR to share data breach findings

Interviewees felt the Office of Civil Rights’ process should be more about finding ways to prevent future breaches than punishing hacked organizations.

Bill would establish CISO role for HHS

House Energy and Commerce Committee members Congresswoman Doris Matsui (D-Calif.) and Congressman Billy Long (R-Mo.) introduced the HHS Data Protection Act which would establish the Office of the Chief Information Security Officer (CISO) within the Department of Health and Human Services (HHS) and elevate the position out from under the CIO.

Calif. legislation addresses ransomware in healthcare

California is leading the charge for healthcare cybersecurity by passing legislation that outlaws ransomware and specifies how the crime should be prosecuted. 

Around the web

Compensation for heart specialists continues to climb. What does this say about cardiology as a whole? Could private equity's rising influence bring about change? We spoke to MedAxiom CEO Jerry Blackwell, MD, MBA, a veteran cardiologist himself, to learn more.

The American College of Cardiology has shared its perspective on new CMS payment policies, highlighting revenue concerns while providing key details for cardiologists and other cardiology professionals. 

As debate simmers over how best to regulate AI, experts continue to offer guidance on where to start, how to proceed and what to emphasize. A new resource models its recommendations on what its authors call the “SETO Loop.”