Privacy & Security

Clockwise from top left: John Brindley, Antoinette Thomas, Ricky Bloomfield, Judy Murphy, Ed Ricks and Rick Bryant.

How physicians, nurses and clinicians are reshaping IT vendor strategies

By Mike Miliard 09:04 am June 11, 2018

A number of high-profile doctors, nurses and CIOs have left hospitals to work at tech companies and they are certainly making an impact.

Colorado passes new 30-day notification data protection law

Colorado passes data protection law requiring breach notification within 30 days

By Jessica Davis 01:08 pm June 07, 2018

The month-long window is the shortest turnaround from a state and doesn’t exempt the healthcare sector, effectively giving Colorado providers just half the time required by HIPAA to report.

Leo Scanlon at a hearing talking about HHS healthcare cybersecurity

Leo Scanlon at a hearing examining the role of HHS in healthcare cybersecurity, on June 8, 2017. Credit: Energy & Commerce Committee

HHS cybersecurity center so unstable staff don't know if it exists, Congress argues

By Jessica Davis 11:45 am June 06, 2018

House and Senate committees criticize department with essentially the same case sidelined Deputy CISO Leo Scanlon made in March.

92 million user accounts of MyHeritage genealogy website breached

By Jessica Davis 03:59 pm June 05, 2018

The breach was contained to hashed passwords and usernames, but the DNA testing service site didn’t waste time notifying its users of the security incident.

Imprivata launches new mobile device authentication with eye toward hospital workflows

By Mike Miliard 12:35 pm June 05, 2018

The technology's badge-tap and single-sign-on process help avoid the slowdowns associated with "fat-finger typing," nurse says.

patients medical records breach of Michigan eye doctor

Holland Eye Surgery & Laser Center in Holland, Michigan. Credit: hollandeye.com

42,000 patients impacted by 2016 breach of Michigan provider

By Jessica Davis 01:56 pm June 04, 2018

A hacker told Holland Eye Surgery and Laser Center in March that they had accessed a patient list, but an investigation revealed that another access occurred back in 2016.

security vulnerabilities update software

Vulnerable devices are a reminder to create solid patch management policies

By Jessica Davis 01:35 pm June 01, 2018

HIMSS’ latest cybersecurity report highlights the continued Meltdown and Spectre threats that first appeared in early 2018, while outlining how hackers can easily exploit healthcare’s legacy systems.

The Advisory Board’s Allyson Vicars on cybersecurity

Allyson Vicars is an associate director with The Advisory Board’s Health Care IT Advisor research program and will be speaking at the Healthcare Security Forum on June 11.

Security is more than an IT problem and C-Suite can't technologize their way out

By Jessica Davis 08:31 am June 01, 2018

The Advisory Board’s Allyson Vicars says health orgs need to lean on governance and engage the executive leaders to tackle cybersecurity issues.

Phishing hack on Ohio provider breaches data of 42,000 patients for a month

By Jessica Davis 12:54 pm May 29, 2018

A hacker hit some email accounts of Aultman Health Foundation with a phishing attack in February, but officials didn’t discover the breach until March 28.

confirming identification for data security in healthcare

How Integris Health fortified data security with identity governance

By Bill Siwicki 09:58 am May 24, 2018

After audits revealed several gaps in identity management, the health system turned to an IG vendor to help it understand which users have access to what and, more importantly, ensure users have the right access to data.