Cybersecurity

Healthcare use of Blockchain on FHIR

I went to the ONC Interop Forum in DC. The security track focused on blockchain all morning. There was nothing new mentioned. This not to say that the audience didn’t get any value, just that I didn’t hear anything new. This lack of new insight is itself an important point. It indicates that much of

[ Read More ]

Open Call for IHE Work Item Proposals 2019

As the IHE ITI Planning Co-Chair… I want to bring attention to the opportunity to bring an Interoperability Problem to IHE to be solved and formulated into an IHE Profile (Implementation Guide). The planning cycle has begun! The IT Infrastructure (ITI) and Patient Care Coordination (PCC) Domains are soliciting work item proposals for the 2018

[ Read More ]

Modes of patient centric communication

When it comes to Patient Data exchange, I want us to be inclusive of “Mediated” exchange, “Directed” exchange, “Controlled” exchange, and “Negotiated” exchange. I have not seen these formally defined, so here is my informal definition. Let me know if you know of another mode of communication. Mediated Exchange — where the Patient themselves is

[ Read More ]

Timebound XDS queries done right

As the author of the soon to be published IHE “Document Sharing Metadata Handbook”, I have been involved in some very deep and disturbing discussions on how to do timebound queries in XDS/XCA. I say very deep because this discussion included almost a dozen of the best minds on the XDS Metadata and Query models.

[ Read More ]

Phishing attacks breach Alive Hospice for 1 to 4 months

Two employee email accounts were breached by phishing attacks, which potentially gave hackers access to a trove of highly sensitive data that varied by patient. Two employees of Tennessee-based Alive Hospice fell for phishing attacks, which potentially breached patient data for one to four months.During a review of their email system on May 15, officials

[ Read More ]

Patient data exposed for months after phishing attack on Sunspire

Employees fell victim to a targeted phishing campaign, which may have exposed sensitive data for some patients, including Social Security numbers and health insurance information. Several employees of Sunspire Health, a nationwide network of addiction treatment facilities, fell victim to a phishing email campaign, which may have exposed personal patient information for about two months.Hackers

[ Read More ]

A Good, Hard Look at Cost Can Help Bolster Healthcare Cybersecurity Funding

When it comes to avoiding unnecessary cybersecurity costs, get everyone together to address risks and properly prepare to prevent evolving threats. It is impossible to separate cybersecurity efforts from dollars-and-cents concerns. Healthcare organizations have limited resources available for technology, and at most organizations, cybersecurity only accounts for a small minority (4 to 7 percent) of

[ Read More ]

4 Steps To Greater Cybersecurity In Healthcare Organizations

Cybersecurity risks in healthcare have increased significantly. Close to 90 percent of healthcare companies have been breached at least once and now, more than 25 percent of all data breaches are related to healthcare.There are a few basic reasons for this:IoT medical devices such as pacemakers, insulin pumps, wearables, and imaging devices were designed without

[ Read More ]

Hospital Diverts Ambulances Due to Ransomware Attack

The ransomware attack Monday impacted the enterprise IT infrastructure, including the electronic health records system, at Harrisonville, Mo.-based Cass Regional Medical Center, which includes 35 inpatient beds and several outpatient clinics, a spokeswoman tells Information Security Media Group.As of Wednesday morning, about 70 percent of Cass’ affected systems were restored, she says. Except for diverting

[ Read More ]