Clean Sweep Live Auction on Wed. May 1st. Click to view the full inventory

DOTmed Home MRI Oncology Ultrasound Molecular Imaging X-Ray Cardiology Health IT Business Affairs
News Home Parts & Service Operating Room CT Women's Health Proton Therapy Endoscopy HTMs Pediatrics
Current Location:
> This Story

Log in or Register to rate this News Story
Forward Printable StoryPrint Comment




More Magazine Features

Breaking barriers in Alzheimer’s disease with focused ultrasound Researchers at Sunnybrook in Toronto are closing the therapeutic gap

Medical community finds ways to make TAVR safer for at-risk patients Improving outcomes with special procedures

What’s new in C-arms and tables? Smaller footprint and dose reduction are defining a new generation of equipment

Getting to the heart of cardiac ultrasound technology From premium systems to point of care, an expanding market

Soothing pediatric imaging fears: Experts discuss options Pediatric imaging should be fun and games

See All Magazine Features  

Risk Management Homepage

AAPM and ACR extinguish concerns regarding radioactive material in cremated bodies Bringing perspective to newly raised concerns

Anthem pays HHS $16 million over 'largest health data breach in US history' Promises 'major corrective action' after info exposed on 79 million people

Cybersecurity threats top ECRI's list of health technology hazards for second year There were 77 healthcare data breaches in first three months of 2018

GE teams with CHI Franciscan Health to implement AI-powered command center Fifth health system to incorporate this technology

Anatomy of a hospital cybersecurity attack Tips for detecting, responding to, and preventing attacks at your facility

Study finds managerial discretion drives voluntary medical device recalls Are physicians being relied on to screen out defective products?

Early discharge associated with better outcomes after TAVR Researchers find that discharging patients within 72 hours yields clinical benefits

Physicians should be granted immunity to malpractice lawsuits, says study Recorded a 13 percent decline in adverse events over four years

Higher radiation dose isn't the best option for prostate cancer Study shows it doesn't affect patient survival rate

Study of the 2016 Summer Olympic Games sheds light on imaging utilization rates May help plan imaging services for future events

Health Care: The soft underbelly of cyber security

From the April 2015 issue of DOTmed HealthCare Business News magazine

Time to get serious about cyber threats
Hackers that are now targeting health care have definitely raised the bar on security threats, according to Mac McMillan, chair of the Healthcare Information and Management Systems Society (HIMSS) Privacy & Security Policy Task Force and founder and CEO of the IT security firm CynergisTek Inc. He notes that both Community Health Systems and Anthem suspect Chinese state-sponsored attackers.

Story Continues Below Advertisement


Special-Pricing Available on Medical Displays, Patient Monitors, Recorders, Printers, Media, Ultrasound Machines, and Cameras.This includes Top Brands such as SONY, BARCO, NDS, NEC, LG, EDAN, EIZO, ELO, FSN, PANASONIC, MITSUBISHI, OLYMPUS, & WIDE.

What sets the latest groups apart from previous generations is that “these folks are very sophisticated, they have all the tools, have the resources, and have the motivation to do what they are doing; and they are very patient in what they are doing,” he says.

While acknowledging that these state-sponsored hacker groups have historically gone after pharmaceutical information, he notes that there is valuable information on the health care provider side, in terms of cutting-edge clinical techniques or managing information in the clinical environment. There is also the added benefit in gaining access to a treasure trove of patient information.

McMillan says the methods of gaining access have evolved, from attacking networks, and once they were hardened, to attacking applications and now, users. “Hackers are no different than any other criminal element,” McMillan says. “They don’t want to get caught. One of the principles of not getting caught is to find the least obtrusive way into a target. What they have learned is to look at all of the social media that we now have.” He adds that they target the average user, who may be gullible, or not paying attention to what he or she is clicking on.

Like UPMC, CynergisTek has developed a mock-phishing platform for its clients, which is tailored to health care organizations. McMillan says the average hit rate is 20 to 40 percent. Of those, about 20 percent have actually filled out a form asking for their credentials. Preventing access through basic means is important. Once hackers gain access to the network, sophisticated attackers consolidate their position inside the network and begin to download software to sniff out other passwords.

One of the things that CynergisTek recommends is that all user IDs and passwords should always be passed inside the network encrypted, so they are harder to get at. Also, people who have administrative privileges should have a second factor of authentication.

Yet even encryption is not a 100-percent effective answer, McMillan says. Even if a customer such as Anthem had encrypted all of its data, once a hacker gains access into the system or an account where they could log in as a legitimate user, it decrypts the data. That’s the level of sophistication that marks the difference in the most recent high-profile incidents, he says.
<< Pages: 1 - 2 - 3 - 4 - 5 - 6 >>

Risk Management Homepage

You Must Be Logged In To Post A Comment

Increase Your
Brand Awareness
Auctions + Private Sales
Get The
Best Price
Buy Equipment/Parts
Find The
Lowest Price
Daily News
Read The
Latest News
Browse All
DOTmed Users
Ethics on DOTmed
View Our
Ethics Program
Gold Parts Vendor Program
Receive PH
Gold Service Dealer Program
Receive RFP/PS
Healthcare Providers
See all
HCP Tools
A Job
Parts Hunter +EasyPay
Get Parts
Recently Certified
View Recently
Certified Users
Recently Rated
View Recently
Certified Users
Rental Central
Rent Equipment
For Less
Sell Equipment/Parts
Get The
Most Money
Service Technicians Forum
Find Help
And Advice
Simple RFP
Get Equipment
Virtual Trade Show
Find Service
For Equipment
Access and use of this site is subject to the terms and conditions of our LEGAL NOTICE & PRIVACY NOTICE
Property of and Proprietary to DOTmed.com, Inc. Copyright ©2001-2019 DOTmed.com, Inc.