Focus on Securing Healthcare

Securing the health environment: Evolving cyberthreats demand shifts in strategy

Barely a day goes by without news of a new malware variant, zero day threat or medical device vulnerability. Hospitals and health systems have come to understand in recent years – with many learning the hard way – that their mission-critical IT systems are facing a relentless and determined threat from innumerable cybersecurity bad actors.

To survive in this fraught new era, healthcare organizations need agile, adaptable and forward-thinking strategies to safeguard their most important asset: data. In August, Healthcare IT News, along with our sister sites, MobiHealthNews and Healthcare Finance, will focus on the many ways the industry is succeeding – and the places it's falling short – when it comes to the all-important task of enterprise-wide security.

What you need to know

How to solve the 'Goldilocks' dilemma of health data sharing?
News

How to solve the 'Goldilocks' dilemma of health data sharing?

Healthcare information is being more widely shared than ever, but how can that be balanced with the...
By Mike Miliard |
August 29, 2019
News

Confusing laws, bad actors among the challenges facing healthcare data safety and patient privacy

The legal and technological picture surrounding data is a muddy one, and the healthcare industry is...
By Jeff Lagasse |
August 28, 2019
Biohacking connected devices: What IT leaders need to know about the ‘Internet of Humans’
News

Biohacking connected devices: What IT leaders need to know about the ‘Internet of Humans’

A cybersecurity expert offers a comprehensive and in-depth look into an emerging area of healthcare...
By Bill Siwicki |
August 28, 2019
Imprivata, Vocera collaborate on mobile device authentication
News

Imprivata, Vocera collaborate on mobile device authentication

The companies are combining Imprivata's Mobile Device Access technology with the Vocera...
By Mike Miliard |
August 28, 2019
Presbyterian Healthcare phishing scam hits 183K patient records
News

Presbyterian Healthcare phishing scam hits 183K patient records

Data accessed during the breach may have included patient and health plan member names as well as...
By Nathan Eddy |
August 28, 2019
Insight

Opinion: What leaders know about cybersecurity

Leaders know that the IT department alone cannot secure an organisation, and that the easiest path...
By Rod Piechowski |
August 28, 2019
CISO security tips for managing hybrid cloud deployments
News

CISO security tips for managing hybrid cloud deployments

The complexities of securing a hybrid cloud environment are not to be underestimated as more health...
By Mike Miliard |
August 22, 2019
News

Hospitals are demanding secure medical devices before they buy

The IoT: "Every something that comes on the market is in essence its own small computer with...
By Susan Morse |
August 22, 2019
News

Hospitals need to know: When disaster strikes, FEMA money is available to those that file quickly

Hospitals often don't file for the funds because they're unaware of what can be reimbursed...
By Susan Morse |
August 21, 2019
News

Cybersecurity: The enemy is already inside the gate

A number one recommendation is to know all of the touch points for data: how it comes in, how it...
By Susan Morse |
August 21, 2019
Circuit board
News

Close to one-third of healthcare employees have never received cybersecurity training, report shows

There is an apparent lack of awareness of federal regulations in both the U.S. and Canada to keep...
By Jeff Lagasse |
August 20, 2019
An identity and access management expert illustrates this critical area of information security and offers tips on how to best control who is accessing protected health information (PHI).
News

Healthcare organizations must lock down identities and access to PHI

An identity and access management expert illustrates this critical area of information security and...
By Bill Siwicki |
August 20, 2019
Ransomware and medical devices: How behavior analytics can protect patients
Insight

Ransomware and medical devices: How behavior analytics can protect patients

Medical devices must be managed from a security perspective, but also from an operational...
By William Scandrett |
August 16, 2019
Critical security tips for provider CIOs using public clouds
News

Critical security tips for provider CIOs using public clouds

Two healthcare CIOs and one deputy CISO offer their expert advice to their peers, explaining how to...
By Bill Siwicki |
August 16, 2019
Intraprise Health BluePrint Protect can help detect, manage security risks
News

Intraprise Health BluePrint Protect can help detect, manage security risks

BluePrint's visualization software coalesces security program data from disparate sources into...
By Nathan Eddy |
August 14, 2019
How healthcare CIOs and CISOs can handle identity and access management
News

How healthcare CIOs and CISOs can handle identity and access management

An expert in the strategies and technologies surrounding identity and access management walks...
By Bill Siwicki |
August 14, 2019
News

Healthcare cybersecurity market poised for growth

The rapid adoption of digital technologies is considered beneficial to providers, but it can lead...
By Jeff Lagasse |
August 14, 2019
News

Imprivata, Microsoft unveil new cloud identity and access management tool

Imprivata Identity Governance extends Microsoft’s IAM technology with role-based access...
By Mike Miliard |
August 13, 2019
News

Medical devices pose cybersecurity and patient threat

Security breaches can happen outside of the four walls of a hospital.
By Susan Morse |
August 09, 2019
How to find and keep top cybersecurity professionals
News

How to find and keep top cybersecurity professionals

The Healthcare and Public Health Sector Coordinating Council has developed a guide to building a...
By Mike Miliard |
August 09, 2019
How provider organizations can protect against credential stuffing and data scraping
News

How provider organizations can protect against credential stuffing and data scraping

With protected health information such a juicy target for cybercriminals, both data theft...
By Bill Siwicki |
August 08, 2019
EHNAC launches new advisory business for privacy & security compliance
News

EHNAC launches new advisory business for privacy & security compliance

The new service from the standards development group will help healthcare clients optimize risk...
By Mike Miliard |
August 06, 2019
News

California earthquakes highlight need to make evacuation decisions quickly

Ridgecrest Regional spent $72 million on a building that withstood an earthquake, but broken water...
By Susan Morse |
August 05, 2019
As new cyber risks emerge, strategies evolving but basic principles still apply
News

As new cyber risks emerge, strategies evolving – but basic principles still apply

BlueKeep? Dridex? A state of emergency in Louisiana? Healthcare security pros find themselves...
By Mike Miliard |
August 02, 2019
Doctor showing EHR.
News

Healthcare's number one financial issue is cybersecurity

The cost of a healthcare breach is about $408 per patient record and that doesn't include the...
By Susan Morse |
July 30, 2019
News

FTC's $5 billion penalty for Facebook security lapses includes new health privacy restrictions

The fine is the largest ever imposed on any company for violating consumers' privacy, according...
By Jeff Lagasse |
July 30, 2019
Hospitals are paying for not vetting their vendors
News

Hospitals are paying for not vetting their vendors

More than half of hospitals say they've had one or more data breaches caused by third-party...
By Benjamin Harris |
July 11, 2019
Security concerns, budget restrictions hamper move to cloud
News

Security concerns, budget restrictions hamper move to cloud

Even as the number of organizations ready to adopt a cloud-based approach is rising, nearly a fifth...
By Nathan Eddy |
July 10, 2019
Security, control of data seen as key barriers to cloud adoption by pharma
News

Security, control of data seen as key barriers to cloud adoption by pharma

There's continued resistance from many pharmaceutical industry executives, who think it's...
By Nathan Eddy |
July 08, 2019
News

Further investment needed to defend NHS against growing cyber threats, researchers warn

A team from the Institute of Global Health Innovation at Imperial College London published a paper...
By Leontina Postelnicu |
July 04, 2019
Large health systems better prepared on security, says CHIME Report
News

Large health systems better prepared on security, says CHIME Report

While most orgs surveyed said they have network access solutions to monitor devices connected to...
By Nathan Eddy |
June 28, 2019
News

Despite big security risks, healthcare leaders say they're sure of their preparedness

Even as they often rely on outmoded data management processes, 70% of execs and IT leaders say they...
By Nathan Eddy |
June 19, 2019
Healthcare executives lack action plan to combat cybersecurity threats
News

Healthcare executives lack action plan to combat cybersecurity threats

The C-suite recognizes these threats, but 54% of respondents to a new survey said the biggest...
By Nathan Eddy |
June 14, 2019
CISOs report cyberattacks on the rise in healthcare
News

CISOs report cyberattacks on the rise in healthcare

According to a new study by Carbon Black, two thirds of surveyed healthcare organizations said...
By Nathan Eddy |
June 10, 2019
As cybersecurity threats change, so must hospitals
News

As cybersecurity threats change, so must hospitals

A new assessment of cybersecurity threats highlights consumers’ growing role and predicts...
By Benjamin Harris |
June 07, 2019
News

IoT risk assessment means all hands on deck

The wide array of connected devices means "lot of different stakeholders that need to...
By Benjamin Harris |
May 30, 2019
News

Health data security exposures doubled in one year, report says

Research from Digital Shadows found imaging files particularly vulnerable.
By Nathan Eddy |
May 30, 2019
News

Key first steps for securing unruly connected devices

You can't secure a network that you don't understand. Mapping hospital IoT is a must-do...
By Benjamin Harris |
May 29, 2019
News

Cybersecurity is a team sport, and information sharing is key

Healthcare systems need to collaborate on defense and rely on AI and machine learning to respond to...
By Benjamin Harris |
May 17, 2019
News

Intermountain CISO West: Cybersecurity for revenue cycle should be a KPI

The revenue cycle is an important target for cybercriminals because of the information that flows...
By Beth Jones Sanborn |
February 11, 2019
CMS booth at HIMSS17
News

CMS responds to data breach affecting 75,000 in federal ACA portal

Open enrollment, which begins November 1, will not be negatively impacted, CMS says.
By Susan Morse |
October 22, 2018
Man working in server room.
News

Can't afford a security chief? Here are the alternatives

Hospitals and medical groups with limited security resources still have leadership options in...
By Susan Morse |
October 22, 2018
News

Anthem pays $16 million in record HIPAA settlement for data breach

Anthem is being held responsible for cyber attacks that stole the protected health information of...
By Susan Morse |
October 16, 2018
Photo Source: The Legal Action Center
News

Aetna to pay $640,000 civil fine, on top of $17 million, to settle envelope breach

The settlement with New Jersey resolves two separate privacy breaches regarding members HIV/AIDS...
By Susan Morse |
October 15, 2018
The effects of Hurricane Florence are beginning to be felt. Credit: Chip Somodevilla/Getty Images
News

Hurricane Florence: Lessons from hospitals that survived recent natural disasters

Here are some of the things hospitals should be working to put in place and resources available...
By Beth Jones Sanborn |
September 13, 2018
Data illustration.
News

Do your CEO and CFO underinvest in cybersecurity? Here's why and what to do about it

Executives and board members aren't cybersecurity experts so putting it in terms they can...
By Beth Jones Sanborn |
January 15, 2019

Other special projects

Digital transformation: Healthcare making progress but much work remains

Workforce development: Your organization is only as strong as its people

Health IT implementation best practices