Privacy & Security

IT Process Institute CEO Scott Alldridge said healthcare organizations need to support security spending and technologies with IT and process rigor to avoid breaches.

The company is said to be the first in healthcare to achieve this validation, which ensures the payment network has met standards to protect data.

Executives at the World Privacy Forum and Institute for Critical Infrastructure Technology said that the availability of EHR data is outpacing demand, which means that cybercriminals have to undertake more attacks to steal the same amount of money.

Hospitals and provider organizations now have to manage business associates that might share data or access to it with overseas vendors. Experts say OCR won't pursue foreign companies after a breach. That means all risk remains on HIPAA-covered entities.

Rate of attacks has steadily increased since 2015 across all industries; healthcare holds third place with 3.5 percent of organizations experiencing an attack.

Don’t wait another day to create a cyberthreat intelligence sharing team. Delve into the web’s dangerous corners, exchange what you find, learn from banking and defense. Just don’t presume cyberthreats won’t happen to you.

A triptych of experts share insights and advice about cyberthreat intelligence sharing, plotting a security strategy and safeguarding data against attacks. 

After a security researcher found that the unencrypted devices could be forced to deliver unauthorized insulin doses, J&J sent patients a letter but also said the probability of such an attack is low. 

New Jersey Spine Center was attacked by Cryptowall, which locked up its EHR, backups and phone system. Marin Healthcare District in California lost two weeks of backup data during restoration.

Security professionals should begin by making anti-malware efforts relevant and routine. From there, leverage the technology you have and make sure users know that software can only do so much to protect them.