Cybersecurity

The digital security of healthcare institutions and data is a growing concern, with an increasing number of cyberattacks each year against healthcare systems, which are seen as easy targets. Cyber attacks often use ransomware to target personal health information, patient data and medical devices to cut off access to the data until a ransom is payed to the hacker. Cybercriminals have become more sophisticated, using malware, ransomware and spyware to attack outdated and vulnerable systems and software. Due to the interconnected nature of hospital IT systems today, the weakest link can be older web-enabled medical devices, including clinical and non-clinical systems. Employees are also a major target of attacks via malicious e-mails that prompt them to open attachments that then download malware onto the hospital's IT system.

Breached Change Healthcare server lacked multifactor authentication, UnitedHealth CEO admits
UnitedHealth CEO Andrew Witty told the Senate Finance Committee that systems have been rebuilt “from scratch” in light of the oversight.
Kaiser Permanente exposed data on 13.4 million members to tech companies
Tracking technologies sent patient information to advertisers such as Microsoft, Google and Meta.
Hackers were inside Change Healthcare’s systems 9 days before attack
UnitedHealth Group confirms hackers have personal data on “a substantial proportion of people in America."
Atrium Health sued for violating patient privacy, sharing data with Facebook and Google
In a court filing, the plaintiffs claim Atrium Health used Meta's Pixel code on its website, resulting in patients receiving targeted ads.
Massive data trove from Change Healthcare hack now for sale on dark web
Cybercriminal group RansomHub claims to have protected health information from nearly every American.

NIST releases guidelines for securing records on mobile devices

Healthcare organizations wondering how to better secure information can look to the National Cybersecurity Center of Excellence for advice after it recently released a new set of practice guidelines on how to better protect information in electronic health records (EHRs).

August 7, 2018

DNA testing companies agree to new data sharing rules

Genetic testing companies—including Ancestry and 23andMe—have agreed to new rules when it comes to sharing customers’ DNA with third-party companies, Fortune reported.

August 2, 2018

GSK reaches 4-year, $300M deal with 23andMe for genetic data

GlaxoSmithKline (GSK) announced a four-year, $300 million deal with 23andMe, a personal genomics and biotechnology company based in Mountain View, California. The British pharmaceutical company will have access to genetic information of 23andMe’s five million customers.

July 30, 2018

Hostage crisis? Ransomware is a threat that demands disaster planning

Considering the growing threat of ransomware in healthcare, organizations need to plan for the day their data become hostages, according to new research from Marshall University. Training and maintaining “digital hygiene” can not only reduce the likelihood of an attack, it also may reduce the financial and operational impacts of an incident.

July 26, 2018

Hackers access health records of 1.5M patients in Singapore

Attempts to hack political players isn’t just an American thing. Lee Hsien Loong, Singapore’s prime minister, has been repeatedly targeted by cyber thieves—and they have accessed a database with information of 1.5 million patients who visited clinics run by SingHealth, the country’s public healthcare system.

July 24, 2018

Could blockchain be the answer to fraud?

Reports of a Chinese vaccine manufacturer fabricating data about its rabies vaccine data has caused an uproar both in China and internationally. It also has also led many to consider blockchain as a potential answer to fraudulent activity.

July 23, 2018

Data breaches are more common—and they're costing millions

Data breaches are major operational disruptors that cost companies millions of dollars—and healthcare ends up getting hit the hardest.

July 13, 2018

Ransomware incidents down 17%—but threat of cyberattacks continues to grow

Cyberattacks are on the rise, but ransomware has declined 17 percent, according to ISACA’s State of Cybersecurity 2018 survey.

June 19, 2018

Around the web

AI in Healthcare

Biden Administration itemizes AI accomplishments to date

Half a year after President Biden officially directed federal agencies in the executive branch’s bailiwick to “seize the promise and manage the risks” of AI, the White House has posted a status report.

Cardiovascular Business

‘Concerning’ data connect industry payments to cardiologists with medical device use

U.S. physicians often receive payments from medical device manufacturers and pharmaceutical companies. New research in JAMA found a connection between receiving such payments and using specific devices—should the industry be concerned?

Cardiovascular Business

Cardiology groups share key update: ABMS seeking feedback on proposed Board of Cardiovascular Medicine

Five of the largest U.S. medical societies focused on cardiovascular health are one step closer to seeing their paradigm-shifting proposal become a reality.

Cybersecurity

Breached Change Healthcare server lacked multifactor authentication, UnitedHealth CEO admits

Kaiser Permanente exposed data on 13.4 million members to tech companies

Hackers were inside Change Healthcare’s systems 9 days before attack

Atrium Health sued for violating patient privacy, sharing data with Facebook and Google

Massive data trove from Change Healthcare hack now for sale on dark web

Around the web