Insider Threat Seriously Undermining Healthcare Cybersecurity

The healthcare industry’s ability to defend against cyberthreats is being seriously undermined by its own workforce, according to two separate reports released this week. In an analysis of 1,368 security incidents at healthcare organizations in 27 countries, Verizon found that nearly six out of 10 (58%) security incidents involve insiders. That figure, according to Verizon, makes healthcare the only […]

5 steps to get a handle on your practice’s cyber vulnerability

A staggering 83 percent of physicians recently told AMA researchers that their practices have experienced a cyber attack of some type. The 1,300 physicians surveyed also said not enough cybersecurity support is coming from the government that will hold them accountable for a patient information breach. But concise, actionable advice is available to help medical […]

Most healthcare breaches still come from hacking

In 2017 the number of individuals affected by breaches within the healthcare sector reached a four-year low. However, 71 percentof breaches in 2017 were due to hacking and IT incidents, and a growing proportion growth trend that has continued since 2014, according to the Bitglass 2018 Healthcare Breach Report. The fourth annual Healthcare Breach Report aggregates data […]

Researchers explore real-world deployment of connected medical devices

ZingBox researchers detected, identified and analyzed the behavior of medical devices deployed in more than 50 hospitals, clinics, and other healthcare locations. Researchers looked at a wide range of medical devices, from infusion pumps and patient monitors to imaging systems and medical device gateways, highlighting vulnerabilities in hospital networks and shedding light on the causes of common security events. […]

Phillips clinical imaging solution plagued by vulnerabilities

Phillips is developing a software update to mitigate 35 CVE-numbered vulnerabilities in the Philips IntelliSpace Portal (ISP), a clinical imaging visualization and analysis solution that is used by healthcare and public health organizations around the world. According to ICS-CERT, some of the vulnerabilities can be exploited remotely by unauthenticated attackers and exploits for some of them […]

New research shows that hackers can target your Pacemackers

A new study is warning that pacemakers and other electrical medical devices could be targeted by hackers for political, financial or personal gain. While there have been no reports of malicious hacking or malware attacks affecting cardiac devices, research published in the Journal of the American College of Cardiology shows that is indeed a possibility […]

Getting Started with IoT Security in Healthcare

It’s estimated that by 2025, more than 30 percent of all Internet of Things (IoT) devices will be dedicated to the realm of healthcare – more than in retail, transportation and the personal security sectors combined. Already today, practitioners are using IoT tech to conduct portable monitoring, enact electronic record keeping initiatives, and to apply drug safeguards […]

What types of hospitals experience data breaches?

An estimated 16 million patient records were stolen in the United States in 2016, and last summer the British health system was crippled by a ransomware attack. While we know these events are on the rise, what do we know about the hospitals that are vulnerable to these attacks? A study in The American Journal […]

Security Survey: 24 Percent of Physicians Fail to Identify Phishing Emails

A recent survey found that doctors were three times worse at identifying phishing emails than their non-physician counterparts, such office workers (24 percent compared to 8 percent). What’s more, 8 in 10 healthcare employees aren’t prepared to protect against common privacy and security threats., according to a survey from MediaPro, a security awareness, and compliance […]

Ransomware Actors Cut Loose on Health Care Organizations

A string of recent attacks suggests that ransomware operators are sharply ramping up their focus on healthcare organizations. Last week, electronic health record (EHR) provider Allscripts became at least the third organization in the health sector to get hit by ransomware since the start of this year. The other two were Indiana-based Hancock Health which ended up […]