Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

Missing flash drive cause of Kaiser breach

The protected health information of more than 49,000 patients at Kaiser’s Anaheim Medical Center is at risk after a computer flash drive went missing, according to the Los Angeles Times.

NJ Blues laptop theft affects 800K

More than 800,000 Horizon Blue Cross Blue Shield of New Jersey members are impacted by the theft of two password-protected but unencyrpted laptop computers.

Laptop theft puts transplant patients’ information at risk

Sensitive information concerning 1,300 transplant patients at Houston Methodist Hospital was compromised after the theft of a hospital laptop, reports the Houston Chronicle.

HITPC: Update on HIPAA compliance activities

Susan McAndrews, deputy director for health information privacy, Office for Civil Rights (OCR), offered the latest in OCR’s privacy and security efforts and opened up about the audit program during the Health IT Policy Committee meeting on Dec. 4.

Happtique certifies first round of apps

Happtique, a mobile health solutions company, has certified 19 health and medical apps that meet certain benchmarks in privacy, security and operability.

Lost drive source of KP's second data breach this fall

A lost USB flash drive is the source of Kaiser Permanente's second data breach this fall.

Calif. breach impacts physicians

Breaches of personal health information are happening every week but it's not often that the main victims are clinicians rather than patients.

NC breach tied to effort to increase transparency

Payments made to patients of North Carolina state hospitals have been posted on a public website—perhaps for years.

Around the web

The tirzepatide shortage that first began in 2022 has been resolved. Drug companies distributing compounded versions of the popular drug now have two to three more months to distribute their remaining supply.

The 24 members of the House Task Force on AI—12 reps from each party—have posted a 253-page report detailing their bipartisan vision for encouraging innovation while minimizing risks. 

Merck sent Hansoh Pharma, a Chinese biopharmaceutical company, an upfront payment of $112 million to license a new investigational GLP-1 receptor agonist. There could be many more payments to come if certain milestones are met.