Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

AMA says Change Healthcare breach is crippling independent practices
A survey of physicians by the American Medical Association reveals that many practices are still losing revenue and struggling to make payroll as a result of the Change Healthcare hack.
Breached Change Healthcare server lacked multifactor authentication, UnitedHealth CEO admits
UnitedHealth CEO Andrew Witty told the Senate Finance Committee that systems have been rebuilt “from scratch” in light of the oversight.
Kaiser Permanente exposed data on 13.4 million members to tech companies
Tracking technologies sent patient information to advertisers such as Microsoft, Google and Meta.
Hackers were inside Change Healthcare’s systems 9 days before attack
UnitedHealth Group confirms hackers have personal data on “a substantial proportion of people in America."
Atrium Health sued for violating patient privacy, sharing data with Facebook and Google
In a court filing, the plaintiffs claim Atrium Health used Meta's Pixel code on its website, resulting in patients receiving targeted ads.

Facebook ends project to share data with healthcare orgs, hospitals

Facebook has been in the news lately, having to explain how millions of users' data have been misused. Now it has announced an end to plans to share user data with several major U.S. hospitals and organizations.

April 6, 2018

Social network sites improve communication between patients, providers—but put data at risk

Social network sites (SNSs) facilitate efficient communication between healthcare professionals but are limited in protecting data, according to a study published in the Journal of Medical Internet Research.

April 3, 2018

MyFitnessPal app experiences breach of 150M accounts

The popular diet and fitness application MyFitnessPal, purchased by Under Armour in 2015, has experienced a breach of security were 150 million accounts had their data stolen.

March 30, 2018

1 CISO's 5 pillars of an effective cybersecurity program

In a March 8 session at HIMSS 2018 in Las Vegas, Kevin Charest, chief information security officer of the Health Care Service Corporation (HCSC), outlined the five pillars of its cybersecurity program.

March 30, 2018

Keeping employees engaged could reduce data breaches

The healthcare industry has ground to cover in the field of cybersecurity. While health systems are investing time and money in technological solutions, an article in the Harvard Business Review argues the solution lies in the human element of security.

March 29, 2018

Report: 58% healthcare cybersecurity breaches involve insiders; 27% result from paper records

According to the 2018 Protected Health Information Data Breach Report (PHIDBR) from Verizon, cybersecurity in healthcare falls behind other industries in being able to protect personal information.

March 27, 2018

Google announces blockchain development

Google has now announced it is developing blockchain solutions aimed at ensuring the safety of its cloud systems.

March 22, 2018

Study finds 2K documents with patient info dumped in recycling bins at hospitals

Records containing personal health information (PHI) and personally identifiable information (PII) were found in the recycling at five different hospitals, according to a study published March 20 in JAMA.

March 20, 2018

Cybersecurity

AMA says Change Healthcare breach is crippling independent practices

Breached Change Healthcare server lacked multifactor authentication, UnitedHealth CEO admits

Kaiser Permanente exposed data on 13.4 million members to tech companies

Hackers were inside Change Healthcare’s systems 9 days before attack

Atrium Health sued for violating patient privacy, sharing data with Facebook and Google