Privacy & Security

Hospital hit with $100K HIPAA bill
By Erin McCann | 12:12 pm | November 24, 2014
Beth Israel Deaconess Medical Center will pay $100,000 to the state of Massachusetts after one of its physicians failed to follow the hospital's laptop encryption policy and an unencrypted laptop was stolen.
Patients willing to share research data
By Mike Miliard | 10:55 am | November 24, 2014
As debate swirls about a recent Institute of Medicine report suggesting that electronic health records collect more non-clinical patient data for population health research, a new poll suggest patients are mostly willing to offer access to anonymized health information -- but only to an extent.
Pacemakers get hacked on TV, but could it happen in real life?
By Kaiser Health News | 11:17 am | November 19, 2014
Jay Radcliffe breaks into medical devices for a living, testing for vulnerabilities as a security researcher. He's also a diabetic and gives himself insulin injections instead of relying on an automated insulin pump, which he says could be hacked.
Does encryption cover all HIPAA bases?
By Erin McCann | 12:06 pm | November 18, 2014
What are the responsibilities of covered entities when an encrypted laptop or device is stolen, but the passcodes are handed over in the theft as well? A recent robbery reported by Boston's Brigham and Women's Hospital may shed some light on these tricky situations.
Hackers swipe data of 60K in vendor HIPAA breach
By Erin McCann | 11:38 am | November 12, 2014
A state insurance plan subcontractor is at the center of a serious security incident after hackers gained three months of unfettered access to its computer system, compromising thousands of members' health records.
CIO Spotlight Episode 20: Kurt Hagerman
By Erin McCann | 03:13 pm | November 06, 2014
Kurt Hagerman, Chief Information Security Officer at Firehost, discusses data security in the cloud, HIPAA compliance, and vetting vendors.
Todd Park to testify on HealthCare.gov
By Government Health IT Staff | 12:05 pm | November 03, 2014
Raising concerns about security practices with the Obamacare website HealthCare.gov, the U.S. House Science Committee has issued a subpoena to compel U.S. Chief Technology Officer Todd Park to testify about his role in creating the site.
Intermountain CISO on new threats
By Tom Sullivan | 12:00 pm | October 27, 2014
Among the 71 mobile and telemedicine projects underway at Intermountain Healthcare are a smartwatch clinicians use, the gyrometer given to patients post-operation and the popular social networking tools Facebook, Twitter and Yammer.
More tech than ever on MGMA show floor
By Bernie Monegain | 01:33 pm | October 23, 2014
With more than 350 exhibitors on the show floor, including many for the first time, MGMA's exhibit hall is expected to be abuzz with activity and fresh ideas. There's also a "Tweet Street."
Without a UPI, healthcare awash in SSNs
By Mike Miliard | 12:20 pm | October 23, 2014
The healthcare industry is swimming in Social Security numbers, thanks to the necessities of patient record management technology. But balancing those requirements with fraud mitigation and privacy protections is proving a big challenge.