Skip to content Skip to navigation

Cleveland Health System Suffers Malware-Related Breach

May 19, 2015
by Gabriel Perna
| Reprints

MetroHealth System in Cleveland suffered a data breach that exposed the information of nearly 1,000 patients thanks to malware on three computers.

The news was first reported by The breach occurred when the health system found malware on three computers in its cardiac catheterization lab. The malware exposed data on patients who had procedures done in the lab from July 14, 2014 to March 21 of this year. According to the health system, a business associate disabled its antivirus software on those three computers to update another software application. The health system removed the malware on the 18th and "back-door" access to the computers on the 21st of March.

The information exposed included the patient’s name, date of service, date of birth, height, and weight; medications administered during the procedure, medical record number, case number (limited to only to that procedure), and cardiac catheterization raw data such as tracings of electrocardiogram (EKG) and oxygen saturation. The health system told that it did not include financial data.

The health system said it will strengthen security and privacy protocols in light of this event, including the increasing of malware monitoring and reviewing antivirus updates.



CMS Hospital Compare Website Updated with VA Data

The Centers for Medicare & Medicaid Services (CMS) has announced the inclusion of Veterans Administration (VA) hospital performance data as part of the federal agency’s Hospital Compare website.

CMS Awards Funding to Special Innovation Projects

The Centers for Medicare & Medicaid Services (CMS) has awarded 20, two-year Special Innovation Projects (SIPs) aimed at local efforts to deliver better care at lower cost.

Center of Excellence in Genomic Science to be Established in Chicago

The National Human Genome Research Institute has awarded $10.6 million over five years for the establishment of a new research center in Chicago to advance genomic science.

EHNAC and HITRUST Combine HIPAA Security Criteria, CSF Framework

The Electronic Healthcare Network Accreditation Commission (EHNAC) and the Health Information Trust Alliance (HITRUST) announced plans to streamline their accreditation and certification programs.

Halamka on MACRA Final Rule: “CMS is Listening and I Thank Them”

Health IT notable expert John Halamka, M.D., CIO of Beth Israel Deaconess Medical Center in Boston, recently weighed in on the Medicare Access and CHIP Reauthorization Act (MACRA) final rule.

Texas Patient Care Clinic Hit with Ransomware Attack

Grand Prairie, Texas-based Rainbow Children's Clinic was the victim of a ransomware attack on its IT systems in August, affecting more than 33,000 patients, according to multiple news media reports this week.