Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

Ascension reverts to pen-and-paper operations after ransomware attack
Most of Ascension's retail pharmacies nationwide are unable to fill prescriptions or accept payments. During the outage, patients are being given pen-on-paper scripts.
Key trends in enterprise imaging
Radiology is going though a period of disruption with a growing radiologist shortage, decreasing reimbursements and increasing numbers of exams, making workflow efficiency a critical concern.
Ascension confirms ransomware caused service shutdowns, ambulance diversions
Emergency services are back up and running, but many patients will need to reschedule tests and treatments while systems at Ascension remain partially offline.
Six hospital groups urge UnitedHealth to take responsibility for Change Healthcare hack notifications
In a public letter, the groups are urging UnitedHealth Group to announce a timeline for notifying patients about what personal data was stolen in the breach of Change Healthcare's systems.
Ascension experiences disruption of operations after 'cybersecurity event'
A third-party security firm has been brought in to assess what systems were accessed and what data, if any, was taken.

Mass. hospital to pay $850K to settle HIPAA violations

A Massachusetts teaching hospital has agreed to pay $850,000 and implement a robust corrective action plan in a HIPAA settlement with the Department of Health and Human Services' Office for Civil Rights (OCR) as a result of a 2011 theft of a laptop. 

November 30, 2015

Hospital web security survey shows 'troubling' efforts in place

Despite the prevalence of health data breaches and cybersecurity threats, many hospitals have surprisingly weak web security programs. 

November 25, 2015

Quest Diagnostics faces class action for alleged idleness during patient privacy breach

A Manhattan law firm has filed a class-action lawsuit against Quest Diagnostics for allegedly doing nothing while a protracted breach of patient privacy unfolded under the clinical-lab corporation’s nose. 

November 25, 2015

MITA white paper offers suggestions to amp up cybersecurity

Cybersecurity best practices and standards by manufacturers and healthcare providers are the best way to fight off attacks, according to a white paper published by the Medical Imaging & Technology Alliance (MITA), a division of National Electrical Manufacturers Association (NEMA).

November 24, 2015

Consider the stakes raised for cybersecurity

One in 13 patients (or 25 million patients) is expected to have their personal and financial information illegally accessed through their healthcare provider’s IT systems over the next five years, according to a report from Accenture.

November 23, 2015

Ransomware could infiltrate medical devices, wearables

Medical devices and wearables will be the target of ransomware hackers in 2016, according to research from Forrester Research. 

November 20, 2015

Facing privacy and security challenges

Two headlines this week highlight the challenges regarding the privacy and security of personal health data, especially as healthcare debates the interoperability of that very data and the systems they are stored within.

November 20, 2015

HITRUST report finds problems with cyberthreat information sharing

There are substantial gaps in the collection and usability of indicators of compromise (IOCs), according to findings from the Health Information Trust Alliance.

November 18, 2015

Around the web

AI in Healthcare

About that bipartisan $32B ‘roadmap’ for AI policy: What’s in it for healthcare?

This week Washington took a major step toward nailing down a solid game plan on federal AI spending for everything outside of defense.

Cardiovascular Business

FDA announces new recall of delivery catheters after patient’s death

The recall includes specific lots of five different medical devices used to treat stroke and other neurovascular diseases.

Cardiovascular Business

FDA warns against use of troubled heart devices, citing ‘continued concerns’ after multiple recalls

The agency is urging healthcare providers to transition away from these devices and seek out alternatives. It is even working with other manufacturers to try and get similar products on the market as quickly as possible.

Cybersecurity

Ascension reverts to pen-and-paper operations after ransomware attack

Key trends in enterprise imaging

Ascension confirms ransomware caused service shutdowns, ambulance diversions

Six hospital groups urge UnitedHealth to take responsibility for Change Healthcare hack notifications

Ascension experiences disruption of operations after 'cybersecurity event'

Around the web