Study Says EHR Systems Vulnerable | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Study Says EHR Systems Vulnerable

September 18, 2007
by root
| Reprints

The security risks associated with EHR systems are vulnerable to exploitation, according to a study published by the eHealth Vulnerability Reporting Program (Dallas), a collaborative of health care industry organizations, technology companies and security professionals.

The study evaluated current industry information security practices, assessed EHR risk levels, benchmarked healthcare information security practices against other industries, and produced a set of recommendations for protecting healthcare information systems.

Key findings of the study include:

· In all cases, evaluated EHR system vulnerabilities could be identified using standard tools and techniques.

· EHR vendors are either not disclosing or inadequately disclosing system vulnerabilities to customers.

· No industry organization could be identified that has established guidelines or practices to appropriately mitigate and manage risks associated with ehealth systems.

· No industry organization could be identified that has the responsibility, charter or mission to address security vulnerabilities in ehealth systems.

Click here for a complete summary of the findings.

The Health IT Summits gather 250+ healthcare leaders in cities across the U.S. to present important new insights, collaborate on ideas, and to have a little fun - Find a Summit Near You!


See more on