Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

Thumbnail

Report: Fewer data breaches, but greater ability to control costs

While the number of data breaches decreased slightly during the past year, healthcare organizations have improved their ability to control data breach costs, according to the Ponemon Institute's “Fourth Annual Benchmark Study on Patient Privacy & Data Security,” which was funded by ID Experts.

Computer theft at contractor office cause of Calif. breach

Los Angeles County medical facilities are notifying about 168,500 patients that their information is at risk following the theft of computer equipment from the offices of the county’s contractor, Sutherland Healthcare Solutions, according to the Los Angeles Times and the official notice sent to patients.

Wash. county faces $215K fine for HIPAA violations

Skagit County in Washington state faces a $215,000 fine for violating several HIPAA rules relating to privacy, security and breach notification.

HIMSS14: Implementing top-notch privacy & security

ORLANDO—“If people don’t trust an organization, that organization won’t be able to deliver the care they expect,” said John Houston, vice president of privacy and information security at the University of Pittsburgh Medical Center, speaking at the Health Information and Management Systems Society annual conference.

Thumbnail

AMDIS Connection | Protecting Privacy Without Harming Patients

Since the 2003 HIPAA Privacy Rule came into being, protection of patient privacy has become “table stakes.” 

Thumbnail

The Patient Matching Conundrum

The federal government is stepping up its efforts to find solutions to improve the ability to match patients with their data.

Puerto Rican insurer faces $6.8M fine for HIPAA violations

Health insurer Triple-S Management faces a fine over a security breach at the insurer’s subsidiary that is larger than any imposed for HIPAA violations by the Office for Civil Rights.

Thumbnail

HIMSS14: Build an integrated security incident response team

ORLANDO--More than seven million patient medical records were breached in 2013, which is a 138 percent increase over 2012, according to Brian Evans, principal consultant at Tom Walsh Consulting, who spoke during a session on breach incident response at the Health Information and Management Systems Society annual conference.

Around the web

The tirzepatide shortage that first began in 2022 has been resolved. Drug companies distributing compounded versions of the popular drug now have two to three more months to distribute their remaining supply.

The 24 members of the House Task Force on AI—12 reps from each party—have posted a 253-page report detailing their bipartisan vision for encouraging innovation while minimizing risks. 

Merck sent Hansoh Pharma, a Chinese biopharmaceutical company, an upfront payment of $112 million to license a new investigational GLP-1 receptor agonist. There could be many more payments to come if certain milestones are met.