Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

NY radiology practice breach affects 97K

A New York radiology practice has informed 97,000 patients that an employee had unauthorized access to their protected health information.

Thumbnail

Montana server hacked, 1.3M at risk

About 1.3 million people’s health information is at risk after hackers gained entry to Montana’s Department of Public Health and Human Services' computer server.

LogRhythm Becomes the Only Security Intelligence Platform to Achieve Meaningful Use Certification

BOULDER, Colo.--LogRhythm, The Security Intelligence Company, today announced that its award-winning Security Intelligence Platform has achieved 2014 Edition Ambulatory and Inpatient Modular EHR ONC HIT Certification, making it the only security intelligence platform to achieve this certification. As a result, it supports healthcare providers and hospitals with Stage 1 and Stage 2 Meaningful Use measures required to qualify for funding under the American Recovery and Reinvestment Act (ARRA).

Feds investigating Cincinnati Facebook breach

The Department of Health & Human Services has launched a federal investigation into HIPAA privacy violations at the University of Cincinnati Medical Center, according to news sources.

Racecar driver's records may be up for sale

Stolen medical files that may be those of German F1 racing driver Michael Schumacher are being offered for sale, according to an article on CNN.com.

Parkview settles record dumping case for $800,000

An Indiana provider faces $800,000 in HIPAA violations after employees left 71 boxes of records outside a physician's home.

Thumbnail

A busy week, especially for breaches

Aside from a $43 billion merger, support for expanded telehealth, the first “wearable record,” new FDA guidance and a startup from the former head of the Office of the National Coordinator for Health IT, privacy and security news populated our headlines.

Study: Use of cloud multiplies data breach risk

The risk of having a $20 million or greater data breach can triple when an organization uses cloud services, according to a report from the Ponemon Institute, which was funded by Netskope, a cloud security broker.

Around the web

The tirzepatide shortage that first began in 2022 has been resolved. Drug companies distributing compounded versions of the popular drug now have two to three more months to distribute their remaining supply.

The 24 members of the House Task Force on AI—12 reps from each party—have posted a 253-page report detailing their bipartisan vision for encouraging innovation while minimizing risks. 

Merck sent Hansoh Pharma, a Chinese biopharmaceutical company, an upfront payment of $112 million to license a new investigational GLP-1 receptor agonist. There could be many more payments to come if certain milestones are met.