Privacy & Security

Where will HIT security be in 3 years?
By Evan Schuman | 11:01 am | April 16, 2014
Security is a nightmare for all companies, but the very nature of healthcare makes it far worse. Are there ways to make security not merely viable, but even profitable?
Heartbleed 'top of food chain' for healthcare industry, says CISO
By Erin McCann | 12:02 pm | April 14, 2014
When it comes to security threat severity, the Heartbleed bug doesn't miss a beat. That's according to Phil Lerner, chief information security officer at Beth Israel Deaconess Medical Center, who, on a scale from 1 to 10, ranks the bug a solid "high priority" at 7.5.
Fourth HIPAA breach for Kaiser
By Erin McCann | 11:25 am | April 07, 2014
Some 5,100 Kaiser Permanente patients were sent HIPAA breach notification letters after a KP research computer was found to have been infected with malicious software. Officials say the computer was infected with the malware for more than two and a half years before being discovered Feb. 12.
Groups to pay $4M for privacy offense
By Erin McCann | 11:53 am | March 24, 2014
It's not only federal HIPAA privacy and security violations that may end up costing industry groups a pretty penny. There's also state privacy laws to heed. Case in point is what recently transpired at Stanford Hospital and Clinics.
3 tips to avoid BYOD breaches
By Diana Manos | 11:13 am | March 19, 2014
Without question, BYOD, or "bring your own device," offers benefits to both healthcare employees and employers. It also presents security issues. No matter who owns the device, hospitals are responsible for any data breaches that occur.
Hospital system fails mock cyberattack
By Erin McCann | 05:25 am | March 19, 2014
The 28-hospital Indian Health Service has failed a mock cyberattack conducted by HHS' Office of Inspector General after its computer network was discovered to have "high risk" vulnerabilities.
Identity crisis looms for US healthcare
By Anthony Brino | 07:45 am | March 18, 2014
While the U.S. continues digitizing its healthcare industry, a huge challenge is arising: not only securing those systems but verifying identities. With a steady stream of HIPAA-covered data breaches continuing over the past few years, some argue that current identity security approaches just aren't adequate.
Cyberattack alerts coming to healthcare
By Erin McCann | 11:40 am | March 13, 2014
If you're in charge of a healthcare organization's data privacy and security, listen up. You now have a new, valuable resource at your fingertips.
HIPAA violations cost county $215K
By Mike Miliard | 08:46 am | March 10, 2014
In the first settlement of its kind, Skagit County, Washington will pay the Department of Health and Human Services $215,000 to make up for deficiencies in its HIPAA compliance program.
Lawyer offers tips for HIPAA compliance
By Mike Miliard | 12:11 pm | March 05, 2014
In a year where "compliance and enforcement is really where the action is going to be," it might help to have some advice on how to keep on the right side of patient privacy law.