Privacy & Security

An individual is holding her cell phone and logging into her laptop.
Massachusetts health data breach involving Harvard Pilgrim Health Care confirmed
By Andrea Fox | 11:46 am | May 26, 2023
An investigation following the ransomware attack against HPHC, the Bay State's second-largest health insurer, identified signs that bad actors exfiltrated PPI and PHI of patients, dependents and providers.
Terri Ripley, CIO for OrthoVirginia
How a physician-owned practice recovered from a ransomware incident
By Andrea Fox | 04:17 pm | May 22, 2023
OrthoVirginia's chief information officer talks about the 18-month remediation process after a Ryuk ransomware incident and describes how a cybersecurity road map and training drove a more comprehensive cyber hygiene strategy.
A woman of color with a striped shirt looks happily at her mobile phone.
FTC seeks to broaden breach notification rule to include apps, connected devices
By Andrea Fox | 12:20 pm | May 22, 2023
The Federal Trade Commission proposes including more vendors of personal health records that access or send unsecured PHR-identifiable data in its rule governing health data sharing and unauthorized protected health information disclosure notifications.
Person using a smartphone
Fertility app Premom shared users' health data without consent, FTC says
By Jessica Hagen | 04:38 pm | May 19, 2023
The Federal Trade Commission alleges the company shared personal health information with two China-based firms, Google and analytics company AppsFlyer.
A NUH medical head using RapidAI
Roundup: RapidAI hastens stroke treatment at NUH and more briefs
By Adam Ang | 01:27 am | May 19, 2023
Also, Southeast Asian hospital chain HMI Group has bought health tech company MHC. 
Gregg Church, president of 4medica.
Universal patient ID helps reduce record duplication, boost safety
By HIMSS TV | 01:00 pm | May 18, 2023
Standardizing information capture, including a universal patient identification, can enhance data quality while eliminating the 20% record duplication rate facing healthcare organizations, says Gregg Church, president of 4medica.
Software code on a screen
HC3 warns of Veeam software vulnerability targeting encrypted credentials
By Andrea Fox | 02:10 pm | May 17, 2023
The exploitation of a flaw in unpatched backup and replication software could result in the compromise of healthcare network infrastructure, data theft and ransomware deployment. 
PharMerica announces health data breach, possibly largest of Q1 2023
By Andrea Fox | 12:07 pm | May 16, 2023
The national pharmacy network, which serves long-term care, senior living and behavioral health organizations, notified patients and families that an unknown third party accessed PHI and PII in March.
Hands operate a smartphone
Tips to prevent 'quishing' and protect patient data
By Andrea Fox | 05:21 pm | May 12, 2023
QR codes designed to improve data transfer can entice healthcare data breaches. Sharat Potharaju of Beaconstac shares advice on how to safely bolster data security while providing patients the ease of mobile access.
Stethoscope rests on a tablet
HIMSSCast: The roles of ChatGPT, voice and other AI in healthcare
By Bill Siwicki | 11:10 am | May 12, 2023
Lessons learned from the HIMSS23 Machine Learning & AI for Healthcare Forum, as told by David Metcalf, director of METIL at the UCF Institute for Simulation & Training.