Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

Unencrypted laptop cause of Calif. breach

The Santa Clara Valley Medical Center has notified patients of a breach to their protected health information (PHI).

Thumbnail

Privacy & Security Roundtable: Putting a Lock on Patient Data

As the healthcare industry drives greater use of patient data through interoperability, information exchange and care coordination, privacy and security concerns surrounding that very data also grow. Clinical Innovation + Technology hosted a roundtable discussion during which the participants discussed the practicalities of accounts of disclosure, the impact of the Omnibus Rule, managing data breaches and more.

Thumbnail

Privacy & Security Challenges

As health IT developments offer improved patient outcomes, reduced spending, improved efficiency, tailored treatment and so much more, the associated patient data holds more promise than ever before. The privacy and security of that data, however, faces growing threats beyond increased calls for its use.

Florida hospital employee's tax fraud efforts impacts 10K

A Florida hospital has notified approximately 10,000 patients that their protected health information and Social Security numbers may have been inappropriately accessed by a former employee for tax fraud purposes.

Thumbnail

Big week in health IT

Finally! The FDA has issued long-awaited final guidance for mobile health applications. In a move that should surprise no one, the agency plans a risk-based approach for enforcing mobile apps.

Strata Rx 2013: Model tests robustness of data de-identification

BOSTON--With about 27 percent of healthcare providers experiencing a breach each year, privacy and security remain as critical as ever. De-identification is one piece of an enterprise privacy program that can make privacy effective, according to speakers at Strata Rx 2013.

Addressing the security challenges of devices

BOSTON—The three elements of patient data security are confidentiality, integrity and availability, which all must be factored into a program that successfully secures the vulnerabilities of medical devices, according to the speakers at a session of the second annual HIMSS Privacy & Security Forum.

Safeguard your organization when using the cloud

BOSTON—In just a few short years, cloud computing has gone from being viewed with caution and skepticism in the healthcare industry to organizations seeing it as an aid to fight information silos and achieve interoperability, according to speakers at the second annual HIMSS Privacy & Security Forum. But, be proactive to make it work effectively.

Around the web

The tirzepatide shortage that first began in 2022 has been resolved. Drug companies distributing compounded versions of the popular drug now have two to three more months to distribute their remaining supply.

The 24 members of the House Task Force on AI—12 reps from each party—have posted a 253-page report detailing their bipartisan vision for encouraging innovation while minimizing risks. 

Merck sent Hansoh Pharma, a Chinese biopharmaceutical company, an upfront payment of $112 million to license a new investigational GLP-1 receptor agonist. There could be many more payments to come if certain milestones are met.