Disaster Recovery/Business Continuity | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Disaster Recovery/Business Continuity

GUEST BLOG: The Cybersecurity Shortage: Closing the Gap

October 17, 2018  |  Mac McMillan, Industry Voice
article
The gap between the level of cybersecurity preparation that should exist in the current environment, and the reality, is both troubling and in need of closer examination, says Mac McMillan

Anthem Agrees to Record Payment—$16M—for Largest U.S. Health Data Breach

October 16, 2018  |  Heather Landi, Associate Editor
news
Anthem, Inc. has agreed to pay $16 million to HHS' Office for Civil Rights to settle potential HIPAA Privacy and Security Rules violations in the largest U.S. health data breach in history.

CISOs, CIOs Not Confident in Their Medical Device Security Strategy, New KLAS Research Finds

October 9, 2018  |  Heather Landi, Associate Editor
article
A new report from KLAS Research sheds light on the current state of the medical device security industry, including the finding that one-third of connected medical devices are "unpatchable."

Aspire Health Suffers Email Breach from Phishing Attack

September 28, 2018  |  Heather Landi, Associate Editor
news
Aspire Health, a Nashville-based in-home healthcare provider, was hacked Sept. 3 as a result of a phishing attack and “lost” some protected health information (PHI), according to a report by the Tennessean.com.

Coping With a Prolonged EHR Downtime

September 28, 2018  |  David Raths, Contributing Editor
article
How ready is your health system to survive a prolonged EHR downtime? Do your clinicians have alternate ways to record their prescriptions, lab orders and progress notes?

Research: Hackers Leveraging Error Messages from Connected Medical Devices

September 27, 2018  |  Heather Landi, Associate Editor
news
Recent research has identified a new trend in cyber attacks targeting connected medical devices—by simply monitoring the network traffic for common error messages, hackers can gain valuable insight into the inner workings of a device’s application.

Report: Healthcare Lags Other Industries in Phishing Resiliency

September 19, 2018  |  Heather Landi, Associate Editor
news
Phishing attacks are a serious problem in the healthcare industry, yet a recent report found that the healthcare industry continues to trail behind many other industries in its phishing resiliency.

Survey: Healthcare Organizations Report Gaps in Disaster Preparedness Plans

September 12, 2018  |  Heather Landi, Associate Editor
news
As Hurricane Florence churns toward the East Coast this week, disaster preparedness is a timely topic, yet a new survey finds that only 72 percent of healthcare providers report their organizations have a comprehensive disaster recovery plan in place covering...

The Healthcare CISO: An Essential Cyber Guardian

August 24, 2018  |  Nick Giannas, Industry Voice
article
As cybersecurity incidents continue to increase and evolve, the CISO has become a pivotal role. What are the challenges healthcare leaders face in identifying and recruiting CISO candidates?

Phishing Attack at Georgia Health System May Have Exposed 400K Patients’ Data

August 20, 2018  |  Heather Landi, Associate Editor
news
Augusta University Health System, based in Augusta, Georgia, has reported that a phishing attack on email accounts that occurred last fall may have led to the unauthorized access of protected health information (PHI) of approximately 417,000 individuals.

PODCAST: AHA's Cybersecurity Leader John Riggi on the Evolving Cyber Threats Facing Healthcare

August 17, 2018  |  Heather Landi, Associate Editor
article
A former FBI Cyber Division leader, John Riggi, now the AHA's senior advisor for cybersecurity and risk, discusses the evolving threats to healthcare.

Report: More than 3M Patient Records Breached in Second Quarter of 2018

August 8, 2018  |  Heather Landi
news
More than 3.14 million patient records were breached in 142 disclosed health data breach incidents during a three-month span from April to June 2018, according to new data released in the Protenus Breach Barometer.

KLAS’s Recent Report on Cybersecurity Services Firms: What Are the Implications for HIT Leaders?

August 4, 2018  |  Mark Hagland
article
What are the implications for healthcare IT leaders in patient care organizations, from the results of the recently published KLAS Research report on cybersecurity services firms? KLAS analyst Dan Czech shares his perspectives

PODCAST: Catching up with Cybersecurity Guru Mac McMillan

July 30, 2018  |  Rajiv Leventhal
article
Mac McMillan believes that 2017 was “clearly the year of ransomware,” but now, although ransomware attacks are still going on, the tide is shifting “to other and newer attacks.”

What Can the Industry Learn from Recent High-Profile Healthcare Cyber Attacks?

July 26, 2018  |  Heather Landi
article
While a recent report found that healthcare ransomware attacks declined in the first half of 2018, a spate of recent high-profile cybersecurity incidents serves as a stark reminder that healthcare continues to be a ripe target for cyber attacks.

Healthcare Data Breach Costs Remain Highest at $408 Per Record

July 13, 2018  |  Heather Landi
news
The cost of a data breach for healthcare organizations continues to rise, from $380 per record last year to $408 per record this year, as the healthcare industry also continues to incur the highest cost for data breaches compared to any other industry, according...

Data Breach at Health Billing Company Exposes PHI of 270,000 People

June 22, 2018  |  Heather Landi
news
A healthcare data breach at Med Associates, a Lathan, N.Y.-based health billing company, that may have exposed the protected health information (PHI) of 270,000 people, according to local media reports.

Judge Rules in Favor of OCR and Upholds $4.3M Fine for MD Anderson

June 19, 2018  |  Heather Landi
news
Houston-based The University of Texas MD Anderson Cancer Center must pay $4.3 million in fines stemming from three separate breaches involving unencrypted electronic devices that exposed patient data for 33,500 patients, according to an administrative law judge...

Report: Cyber Attacks on the Rise and Evolving, as Ransomware Declines

June 14, 2018  |  Heather Landi
news
Cyberthreats are continuing to increase and shift, and even though ransomware attacks are significantly declining, cyberattacks are on the rise, according to a new report from the global association ISACA.

Congressional Leaders Call Out HHS Leaders on Healthcare Cybersecurity Center

June 7, 2018  | 
news
A bipartisan group of U.S. Senators and U.S. Representatives wrote a joint letter June 5 to HHS Secretary Alex Azar voicing concerns and confusion about the status of the one-year-old Healthcare Cybersecurity and Communications Integration Center, and HHS’...

HITRUST Provides NIST Cybersecurity Framework Certification

May 23, 2018  |  Heather Landi
news
The Health Information Trust Alliance (HITRUST), security and privacy standards development and accreditation organization, announced this week a certification program for the National Institute of Standards and Technology's (NIST) Cybersecurity Framework (...

Guest Blog: Mac McMillan on Why Improving Cyber Readiness is a Business Imperative

May 12, 2018  |  Mac McMillan
article
The AMA’s recent recommendation to HHS to eliminate its data security risk assessment requirement was a major misstep, as it failed to take into account how fundamental such work is in the current environment, argues cybersecurity expert Mac McMillan

Humanitarian Data Exchange Wins Health Data Liberator Award

April 26, 2018  |  David Raths
news
Sarah Telford and Ahmadou Dicko were named the winners of this year’s Health Data Liberator award at the Health Datapalooza conference in Washington, D.C., for their work on the Humanitarian Data Exchange.

House Seeking Stakeholder Feedback on Addressing Cyber Risks of Legacy Health IT

April 25, 2018  |  Heather Landi
news
The House Energy and Commerce Committee is seeking input and feedback from healthcare industry stakeholders on how to address cybersecurity vulnerabilities in legacy healthcare IT technologies and medical devices.

Report: Advanced Hacker Group, Orangeworm, Targeting Healthcare Industry

April 23, 2018  |  Heather Landi
news
A new attack group, dubbed Orangeworm, is conducting targeted cyber attacks against healthcare organizations in the United States, Europe and Asia, according to a new report from researchers at cybersecurity firm Symantec.

At Lakeland Health, IT Leaders are “Changing the Storyline” on Cybersecurity and Seeing Significant Results

April 17, 2018  |  Heather Landi
article
Lakeland Health earned semifinalist status in the 2018 Healthcare Informatics' Innovator Awards program based on an enterprise-wide initiative to improve the organization's cybersecurity program, with cultural change being a key focus.

BayCare Health CISO Thien Lam Shares His Insights on Disaster Recovery and Related Issues

April 13, 2018  |  Mark Hagland
article
Thien Lam, CISO at BayCare Health System, shares his perspectives on some of the key issues facing CISOs in patient care organizations right now, including disaster recovery, business continuity, and network segmentation

Report: Majority of Hackers Can Breach a Hospital’s Perimeter in Under Five Hours

April 12, 2018  |  Heather Landi
news
Hackers can complete an entire data breach in under 15 hours, which includes exfiltrating data, according to a recent report, and 23 percent of hackers say they can complete a breach of a hospital or healthcare organization under five hours.

Healthcare IT Security Teams Struggle with Basic Hygiene of Patching, Survey Finds

April 6, 2018  |  Heather Landi
news
A recent survey of IT security leaders across a range of industries identified a security “patching paradox,” in which organizations plan to hire more resources for vulnerability response, yet most organizations are still using inefficient patching processes.

Media Report: Finger Lakes Health Paid Ransom, Restoring Systems After Cyber Attack

March 26, 2018  |  Heather Landi
news
According to an article in the Finger Lakes Times posted Sunday, Finger Lakes Health officials confirmed on Friday that a payment was made following the “ransomware” attack that disabled the health system’s electronic systems for about a week.

Pages

Subscribe to Disaster Recovery/Business Continuity
betebettipobetngsbahis