DOTmed Home MRI Oncology Ultrasound Molecular Imaging X-Ray Cardiology Health IT Business Affairs
News Home Parts & Service Operating Room CT Women's Health Proton Therapy Endoscopy HTMs Mobile Imaging
SEARCH
Current Location:
>
> This Story

starstarstarstarstar (1)
Log in or Register to rate this News Story
Forward Printable StoryPrint Comment

 

Health IT Homepage

Solutions for mitigating health care investigation complexities and risks Shifting from reactive to proactive to reduce breaches

Philips gets FDA nod to market IntelliSpace Portal 9.0 and new applications Helps quantify and quickly diagnose conditions

Philips to buy EEG technology manufacturer for approximately €32.9 million Company plans to establish new neurology portfolio

Endolite's Linx smart prosthetic limb wins prestigious medtech award Company aims to attract more U.S. customers

RaySearch inks OIS deal with the University of Wisconsin-Madison Planned launch in second half of 2017

The latest tools and gadgets can prove to be a distraction: Four tips to prevent 'Bright Shiny Object Syndrome' Jay Erickson, head of global operations for Modus, shares insight on smarter tech investing

Zebra-Med enters deep learning image analysis market in Europe, Australia and New Zealand Machine learning is changing radiology

Athenahealth to buy Silicon Valley's Praxify Technologies in $63 million deal Aims to increase research and development

GE unveils its Encompass wireless asset tracking solution at AAMI Helping biomeds track down critical mobile assets in real time

IT Matters - The need to mitigate data breaches and cyberattacks Five tips to balance great interoperability against the great risks that come with it

Majority of recent health data breaches were an inside job: report

by John W. Mitchell , Senior Correspondent
According to a recent analysis by patient protection analysis experts at Protenus, insiders committed 58.4 percent of patient health record privacy violations in January 2017 — a figure well above the 43 percent for all of 2016.

While external hacking of medical records garnered most of the attention last year, insider violations are a much bigger problem. Another concern is that hospitals are often exceeding the 60-day period required by the government to report such breaches.

Story Continues Below Advertisement

WHERE THERE IS SYNERGY, THERE IS STRENGTH

The Conserus™ suite of intelligent, flexible and vendor-neutral imaging solutions can help you connect your staff and existing systems across your entire enterprise. Because stronger connections deliver stronger outcomes. Click link to schedule a demo>>>



"In 2016, the headlines were dominated by external threats (26.8 percent of incidents)," Robert Lord, co-founder and CEO at Protenus told HCB News. "While this is a perennial challenge, the severity of the delay between breach and detection (607 days) in the case of malicious insiders was deeply troubling and quite surprising."

Lord said his company, in collaboration with databreaches.net, provides a monthly assessment of data breaches affecting health care data, whatever the source of the breach or origin of the data. They also provide an annual report.

The January Breach Barometer report included nearly 400,000 compromised patient records involving 31 incidents. The two companies gather their information from publicly reported databases, and other events reported in the media.

"The Breach Barometer ... helps hospital leadership better prioritize budget line items to help mitigate their breach risk," said Lord. "It also arms privacy and security teams with information to help justify the resources they need to help better protect an organization from an array of threats to their patient data."

According to Lord, awareness about internal threats is generally less publicized.

"We believe that 2017 will be the year of insider breach awareness. Insider threats need focus and action now," Lord stressed. "It's time to ensure the trustworthiness and appropriateness of access to clinical systems."

Of course, outside hacking remains a concern. According to the Protenus website, there were 12 hacking incidents in January affecting more than 145,000 records. One of the incidents was unusual, in that there was no ransomware or ransom demand. But the hack did interfere with patient care when data was corrupted and clinics could not access prescription records.

In addition to the data breach itself, Lord said hospitals are not doing a good job of reporting in a timely manner. According to the January Breach Barometers, there was a 174-day average time from breach to initiation to Health and Human Service (HHS), the federal agency that tracks health care privacy violations. Lord said that forty percent of the entities took longer than the 60-day window required by HHS.

Back to HCB News
  Pages: 1

Health IT Homepage


You Must Be Logged In To Post A Comment

Advertise
Increase Your
Brand Awareness
Auctions + Private Sales
Get The
Best Price
Buy Equipment/Parts
Find The
Lowest Price
Daily News
Read The
Latest News
Directory
Browse All
DOTmed Users
Ethics on DOTmed
View Our
Ethics Program
Gold Parts Vendor Program
Receive PH
Requests
Gold Service Dealer Program
Receive RFP/PS
Requests
Healthcare Providers
See all
HCP Tools
Jobs/Training
Find/Fill
A Job
Parts Hunter +EasyPay
Get Parts
Quotes
Recently Certified
View Recently
Certified Users
Recently Rated
View Recently
Certified Users
Rental Central
Rent Equipment
For Less
Sell Equipment/Parts
Get The
Most Money
Service Technicians Forum
Find Help
And Advice
Simple RFP
Get Equipment
Quotes
Virtual Trade Show
Find Service
For Equipment
Access and use of this site is subject to the terms and conditions of our LEGAL NOTICE & PRIVACY NOTICE
Property of and Proprietary to DOTmed.com, Inc. Copyright ©2001-2017 DOTmed.com, Inc.
ALL RIGHTS RESERVED