Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

After major breach, L.A. County looking to require encryption for contractors

Following a computer theft at the county health contractor’s office that compromised the personal health information of more than 342,000 patients, Los Angeles County supervisors are taking steps to tighten security rules, according to an article in the Los Angeles Times.

Thumbnail

Cut Your Security Risk

Consider these tips and tricks amid growing concerns for healthcare’s cyber security.

Stolen computers compromise data of 1,213 patients

Manchester, N.H.-based Elliot Hospital and police are investigating the theft of four computers that contain limited personal information about 1,213 patients, reports WMUR New Hampshire.

FTC: Congress should increase transparency surrounding data brokers

Data brokers operate with a fundamental lack of transparency, according to the Federal Trade Commission, and Congress should consider enacting legislation to make data broker practices more visible to consumers and to give consumers greater control over the immense amounts of personal information about them collected and shared by data brokers.

Calif. appellate court: Hospital not liable for breach

A California appellate court has ruled that Eisenhower Medical Center, based in Rancho Mirage, Calif., is not liable for a data breach affecting about 500,000 patients.

White House: HHS has sufficient cybersecurity regulations

The Department of Health and Human Services need not issue any more regulations governing cybersecurity.

Keylogger malware breach hits UC Irvine

Keylogger malware infected three Student Health Center computers at UC Irvine for about three weeks, putting the personal information of 1,813 students and 23 non-students at risk, reports SC Magazine.

Government health data mining practices: Big Brother or better care?

Government agencies increasingly mine Medicare health insurance claims to identify and reach out to vulnerable people, especially during emergencies. A recent New York Times articles delves into the privacy and ethical quandaries surrounding this practice, and whether the benefits outweighs these concerns.

Around the web

The tirzepatide shortage that first began in 2022 has been resolved. Drug companies distributing compounded versions of the popular drug now have two to three more months to distribute their remaining supply.

The 24 members of the House Task Force on AI—12 reps from each party—have posted a 253-page report detailing their bipartisan vision for encouraging innovation while minimizing risks. 

Merck sent Hansoh Pharma, a Chinese biopharmaceutical company, an upfront payment of $112 million to license a new investigational GLP-1 receptor agonist. There could be many more payments to come if certain milestones are met.