Cybersecurity

Grassley demands HHS outline cybersecurity policies to address “critical deficiencies”

Senate Finance Committee Chairman Chuck Grassley wants the know what HHSis doing to address what the Office of Inspector General called “critical vulnerabilities” in the department’s cybersecurity controls and detection. Senate Finance Committee Chairman Chuck Grassley wants the know what the U.S. Department of Health and Human Services (HHS) is doing to address critical deficiencies

[ Read More ]

Why information security should be every hospital CEO’s No. 2 priority (at least right now)

Infosec is a patient safety issue and its critical that customers trust you. But many health systems have been investing too little for years. Its time for that to change. Health systems have been underinvesting in information security for a decade, some even longer, but the threat landscape has now reached a critical point. Hackers,

[ Read More ]

Health systems get failing grade when it comes to NIST cybersecurity best practices

Healthcare organizations continue to fall short with managing cybersecurity risks as measured by how well they are conforming with recognized best practices for security and privacy. Healthcare organizations continue to fall short with managing cybersecurity risks as measured by how well they are conforming with recognized best practices for security and privacy.Health systems and hospitals

[ Read More ]

Report: Cyber Attackers Could Add Fake Cancerous Nodules to Medical Imaging Scans

Researchers in Israel attest they have developed malware that would let cyber attackers add fake cancerous nodules to CT or MRI scans before radiologists and doctors examined them, thereby leading to leading to potential misdiagnoses, according to a story this week in the Washington Post.The reporter, Kim Zetter, wrote in her story that the researchers

[ Read More ]

Patients file lawsuit against UConn Health over data breach impacting 300K patients

The first lawsuit stemming from a February announcement that the University of Connecticut Health Center suffered a data breach impacting patient data has been filed in federal court.UConn Health patient Yoselin Martinez filed a class action lawsuit on March 18 on behalf of herself and other former and current patients impacted by the breach. UConn

[ Read More ]

Tiered FDA medical device security guidance concerns industry

brThe U.S. Food and Drug Administration (FDA) recently released its draft guidance on managing cybersecurity in medical device premarket submissions. However, leading companies such as GE Healthcare and industry groups have voiced concerns over the tiered approach, saying this will result in confusion and potential discrepancies. They want the tiered system eliminated or amended. Industry

[ Read More ]

Phishing scam exposes personal, medical information at central California school districts

Phishing emails to employees at several school districts in Monterey County, California, have exposed Social Security numbers and medical records. A phishing scam targeting Carmel Unified School District in Monterey County, California, exposed documents containing sensitive employee information, the district announced last week.Hackers obtained login credentials to several employee email accounts, according to CUSD, one

[ Read More ]