Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

Healthcare hacker sentenced to 10 years in prison
Robert Purbeck, 45, of Georgia was found with data on more than 132,000 individuals taken from various breaches, including multiple providers, a police station and a city government.
Ransomware group deploys ticking clock to threaten Georgia hospital
Memorial Hospital and Manor announced the data breach through Facebook on Nov. 3. The cybercrime group Embargo has taken credit for the incident, claiming to have 1.15TB of stolen information.
Hackers were inside an Iowa hospital’s network for two weeks
St. Anthony Regional Hospital confirmed patient data was taken by cybercriminals, but the August incident is still being investigated.
Microsoft: Ransomware hit nearly 400 healthcare entities this year—a 300% rise since 2015
A study from Microsoft on the impact of ransomware found unaffected nearby hospitals see a rise in stroke and cardiac arrest cases, in addition to an influx of patients.
Feds make it official: Change data breach was the largest in healthcare history, impacting 100M
Updated reporting from HHS shows UnitedHealth Group's estimate that roughly one-third of people in the U.S. would be affected was correct.

Watchdog calls for stronger FDA to thwart would-be hackers of medical devices

In January, the FDA issued draft guidance advising medical-device manufacturers to think through cybersecurity concerns for the entire life cycle of each of their products. This week a nonprofit, nonpartisan think tank called phooey on the advisement and urged the healthcare IT community to weigh in on the draft by its April 21 comments deadline.

February 19, 2016

Impostor sends phony CEO email, tricks healthcare provider into releasing employee data

A rehabilitation and nursing home healthcare provider in California has announced it mistakenly sent employee information to someone impersonating its CEO via email.

February 19, 2016

California hospital pays $17,000 ransom to restore its systems after malware attack

Hollywood Presbyterian Medical Center has paid a ransom of 40 bitcoins, worth approximately $17,000, to a group of hackers who infiltrated the hospital’s computer systems.

February 18, 2016

5 things to know about patient perceptions of health info privacy, security

Healthcare consumers became less concerned about the privacy and security of their medical and related records in the three-year period 2012 to 2014. But will the trend of trust endure in the wake of the massive, high-profile data breaches that started dropping like confidence-busting bombs in 2015?

February 17, 2016

Radiology center announces privacy breach after patient records fall out of truck

Radiology Regional Center, a diagnostic facility with nine locations in Florida, announced this week that records containing personal patient information fell from a waste management truck onto the street in Fort Meyers, Fla., while being transported to be incinerated.

February 17, 2016

Medical records found in Florida landfill

A man discarding trash at a St. Petersburg, Fl.-area landfill stumbled upon unsecured patient medical records originating from a now-closed urgent care facility, according to a report from ABC News.

February 16, 2016

Hackers using ransomware to hold Calif. hospital data hostage

Hackers are holding a Hollywood, Calif., hospital ransom, demanding $3.6 million in Bitcoin to release the vital patient data they encrypted in a ransomware cyberattack.

February 16, 2016

Miami provider experiences another security problem

Miami-based Jackson Health System is facing its second security incident in the span of a week.

February 11, 2016

Around the web

Cardiovascular Business

Q&A: MedAxiom CEO explores key trends in cardiologist, cardiovascular surgeon compensation

Compensation for heart specialists continues to climb. What does this say about cardiology as a whole? Could private equity's rising influence bring about change? We spoke to MedAxiom CEO Jerry Blackwell, MD, MBA, a veteran cardiologist himself, to learn more.

Cardiovascular Business

Payment cuts and beyond: Key takeaways for cardiologists from the 2025 Medicare Physician Fee Schedule

The American College of Cardiology has shared its perspective on new CMS payment policies, highlighting revenue concerns while providing key details for cardiologists and other cardiology professionals.

AI in Healthcare

A modest proposal to rally AI regulators around a simple game plan

As debate simmers over how best to regulate AI, experts continue to offer guidance on where to start, how to proceed and what to emphasize. A new resource models its recommendations on what its authors call the “SETO Loop.”

Cybersecurity

Healthcare hacker sentenced to 10 years in prison

Ransomware group deploys ticking clock to threaten Georgia hospital

Hackers were inside an Iowa hospital’s network for two weeks

Microsoft: Ransomware hit nearly 400 healthcare entities this year—a 300% rise since 2015

Feds make it official: Change data breach was the largest in healthcare history, impacting 100M

Around the web