Security

Privacy & Security
NIST tweaks advice on passwords, says make them easier to remember
By Tom Sullivan | 02:52 pm | August 16, 2017
They’re difficult to memorize so employees skirt hospital IT rules when conjuring them up anyway, group says.
Revenue Cycle
Sentara Healthcare, Old Dominion to develop real-world blockchain metrics
By Mike Miliard | 12:04 pm | August 16, 2017
Cybersecurity experts want to open the hood and and test the digital ledger technology for identity and access management.
Privacy & Security
What to know before buying AI-based cybersecurity tools
By Bill Siwicki | 11:04 am | August 16, 2017
These tools have evolved in maturity, and there are ways to conduct due diligence to get past the hype.
Privacy & Security
Hackers breach third party cloud vendor TekLinks
By Jessica Davis | 03:30 pm | August 15, 2017
Cloud hosting and server management provider notified Alabama’s Surgical Dermatology Group that a hacker had access to its server from March 23 until about May 1.
Commentary: Why information security is a patient safety issue
By Mike Miliard | 02:55 pm | August 15, 2017
Cybersecurity requires strategy to succeed and that means putting your priorities in the right place. CISOs and other infosec pros must up their game to make protecting patients the top concern.
Security
Warning banners often work: Here's how hospitals can use them to ward off hackers
By Bill Siwicki | 11:14 am | August 15, 2017
They seem so basic, but a team of criminology researchers has found they can actually be effective -- but only against certain types of attacks.
Privacy & Security
Penn Medicine CIO calls for international law enforcement cooperation to fight cybercrime
By Mike Restuccia | 10:09 am | August 15, 2017
Mike Restuccia says the WannaCry, Petya and ransomware attacks demand more collaboration between healthcare leaders and government agencies, immediately. 
Security
Using both Direct and FHIR standards could improve data exchange
By Mike Miliard | 04:34 pm | August 14, 2017
Experts from HL7 and DirectTrust say hospitals can benefit from combining the two interoperability specs.
Security
Make the training stick: How to engage users in cybersecurity practices
By Bill Siwicki | 03:20 pm | August 14, 2017
Riverside HealthCare achieved a 99 percent compliance rate with phishing campaigns after it educated (and perhaps scared) its staff into being cautious.
Security
Los Angeles provider breached by ransomware attack, over 260,000 patients affected (UPDATED)
By Jessica Davis | 12:48 pm | August 14, 2017
Pacific Alliance Medical Center’s servers were hit by a ransomware attack in June, and officials said the investigation couldn’t rule out whether 266,123 patient records were accessed.