September 28, 2018 | Heather Landi, Associate Editor
Aspire Health, a Nashville-based in-home healthcare provider, was hacked Sept. 3 as a result of a phishing attack and “lost” some protected health information (PHI), according to a report by the Tennessean.com.
September 27, 2018 | Heather Landi, Associate Editor
Recent research has identified a new trend in cyber attacks targeting connected medical devices—by simply monitoring the network traffic for common error messages, hackers can gain valuable insight into the inner workings of a device’s application.
September 25, 2018 | Rajiv Leventhal, Managing Editor
As leading healthcare stakeholder groups remain on different sides of the fence regarding patient privacy laws in a sweeping opioids legislation, it’s looking like privacy advocates will win the battle.
September 25, 2018 | Heather Landi, Associate Editor
Health plans accounted for the greatest number of patient records breached over the past seven years, according to an analysis of U.S. health care data conducted by two Massachusetts General Hospital physicians.
September 20, 2018 | Heather Landi, Associate Editor
Three Boston hospitals that allowed film crews to film an ABC documentary on their premises have settled with the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) over potential violations of the Health Insurance Portability and...
September 19, 2018 | Rajiv Leventhal, Managing Editor
The Philadelphia-based health insurer Independence Blue Cross is notifying about 17,000 of its members that some of their protected health information (PHI) has been exposed online and has potentially been accessed by unauthorized individuals.
September 12, 2018 | Heather Landi, Associate Editor
As Hurricane Florence churns toward the East Coast this week, disaster preparedness is a timely topic, yet a new survey finds that only 72 percent of healthcare providers report their organizations have a comprehensive disaster recovery plan in place covering...
Augusta University Health System, based in Augusta, Georgia, has reported that a phishing attack on email accounts that occurred last fall may have led to the unauthorized access of protected health information (PHI) of approximately 417,000 individuals.
More than 3.14 million patient records were breached in 142 disclosed health data breach incidents during a three-month span from April to June 2018, according to new data released in the Protenus Breach Barometer.
UnityPoint Health, a health system based in Des Moines, Ia., has let about 1.4 million patients know that their personal and health information may have been compromised, according to a press release from the organization.
While a recent report found that healthcare ransomware attacks declined in the first half of 2018, a spate of recent high-profile cybersecurity incidents serves as a stark reminder that healthcare continues to be a ripe target for cyber attacks.
In the first half of 2018, ransomware events in major healthcare data breaches diminished substantially compared to the same time period last year, as cyber attackers move on to more profitable activities, such as cryptojacking, according to a new report form...
The cost of a data breach for healthcare organizations continues to rise, from $380 per record last year to $408 per record this year, as the healthcare industry also continues to incur the highest cost for data breaches compared to any other industry, according...
While media headlines tend to focus on external breaches and would-be hackers, the overwhelming majority of IT professionals at healthcare provider organizations see insiders as an equal or greater threat to unwanted exposure of sensitive data, according to a...
A healthcare data breach at Med Associates, a Lathan, N.Y.-based health billing company, that may have exposed the protected health information (PHI) of 270,000 people, according to local media reports.
The U.S. House of Representatives recently passed a bill designed to align 42 CFR Part 2 with HIPAA for the purposes of health care treatment, payment, and operations. One goal of the change is so that care can be better coordinated and providers can have...
Houston-based The University of Texas MD Anderson Cancer Center must pay $4.3 million in fines stemming from three separate breaches involving unencrypted electronic devices that exposed patient data for 33,500 patients, according to an administrative law judge...
Cyberthreats are continuing to increase and shift, and even though ransomware attacks are significantly declining, cyberattacks are on the rise, according to a new report from the global association ISACA.
Hospital information executives cite cloud hosting as one of their organizations’ top priorities, yet the transition to the cloud is happening slowly as many CIOs continue to have concerns about compliance as well as data security and privacy, according to a new...
The Health Information Trust Alliance (HITRUST), security and privacy standards development and accreditation organization, announced this week a certification program for the National Institute of Standards and Technology's (NIST) Cybersecurity Framework (...