Privacy & Security

healthcare data breach
By Jessica Davis 02:02 pm October 12, 2017
Patient Home Monitoring failed to lock down public access to its online server, exposing personal data of 150,000 patients.
DNS records
By Bill Siwicki 02:44 pm October 06, 2017
With more attacks coming, and the domain name system being at the center of it all, hospitals should be careful about handling web and email domains, FarSight Security says.
unique patient identifiers

In Oct. 3 letter, Sens. Orrin Hatch, Elizabeth Warren and others asked for “clear recommendations for steps that federal agencies – specifically ONC – could take to develop improved patient matching methods.”

By Bernie Monegain 01:14 pm October 06, 2017
At the same time, Regenstrief has launched a five-year effort that it hopes can help solve the problem.
HHS, FDA, VA among 24 federal agencies with ineffective security
By Jessica Davis 12:45 pm October 06, 2017
Inspector generals and GAO have made hundreds of recommendations to these agencies about deficiencies in security controls, but many have yet to be fully implemented.
cybersecurity talent
By Bill Siwicki 03:29 pm October 05, 2017
The hospital's information security department has established a Cyber Student Staffing Program for recruiting students to be future cybersecurity workers.
medical device security
By Bill Siwicki 11:03 am October 05, 2017
Segmented networks, authorization protocols, device behavior are a few strategies that execs should adopt today.
Blockchain in healthcare
By Jessica Davis 02:37 pm October 03, 2017
While most payers are implementing or are planning to launch blockchain projects by 2019, providers are still waiting to see how federal regulations unfold.
security patches
By Tom Sullivan 09:40 am October 02, 2017
Apple, IBM, Mozilla and Apache all have fixes out, and not installing them leaves open doors for hackers to walk right through.
EHR data security
By Bill Siwicki 12:39 pm September 29, 2017
Infosec teams need to know about EHRs, timing eccentricity and other challenges of detecting inappropriate access.
McAfee warns healthcare CIOs, CISOs
By Bill Siwicki 02:32 pm September 28, 2017
In the second quarter of 2017, account hijacking led disclosed attack vectors, followed by DDoS, leaks, targeted attacks, malware and SQL injections.

Most Read

The Daily Brief Newsletter