You are here

Privacy & Security


Researchers are developing platforms to securely and quickly send data to and from smartphones. A new mobile application developed to assist providers in meeting patient privacy regulation allows for the sharing and storing of patient-related photos, videos and audio.

The lack of cybersecurity in mobile applications meant to assist dementia patients and their caregivers could put patients' personal health information at risk, according to researchers at McLean Hospitals in Belmont, Massachusetts, and clinicians at Harvard Medical School. A study in the American Journal of Geriatric Psychiatry examined app security policies and provided recommendations.

Cyberattacks occur on many types of devices—including 3D printers. A new study, conducted by researchers at Rutgers University-New Brunswick and Georgia Institute of Technology, examines methods in protecting 3D printers for improved cybersecurity.

Facing an increasing amount of cyberattacks, healthcare organizations are building up their cybersecurity programs, according to the 2017 HIMSS Cybersecurity Survey. After speaking with 126 health information technology leaders, researchers outlined current security measures to show points of improvement and explore how the industry can prevent future attacks.

The healthcare industry has fought an uphill battle against hackers in 2017—and it shows in the latest Beazley Breach Insights report. The report, conducted by the cyber and data breach response insurance firm, found the rate of ransomware attacks had increased by 50 percent in the first quarter of 2017, with demands up 133 percent.


Recent Headlines

HIMSS 2017: Boehner & Rendell lead list of big-name keynote speakers

It’s time once again for HIMSS to host hospital management engineers, administrators and other industry professionals at its 2017 annual meeting.  HIMSS17—which runs Feb. 19-23 at the Orange County Convention Center in Orlando—is scheduled to include a variety of networking events and educational sessions, headlined by four highly acclaimed keynote speakers.

HIMSS 2017: How one hospital prepared for, and survived, a ‘hacktivist’ cyberattack

Sometimes, hackers aren’t motivated by money when they go after patient records. Luckily for hospitals and health systems, even so-called “hacktivists” can be stopped with the same defenses that fend off other cyberattacks.

2016: The year of the data breach

The healthcare system faced an inceasingly common occurance in 2016, with a report by Protenus Breach Barometer claiming there was, on average, one data breach a day.

OCR clarifies HIPAA disclosure after Orlando nightclub shooting

HHS’s Office of Civil Rights (OCR) has clarified that HIPAA’s rules on disclosing protected health information (PHI) are not limited by the sex or gender identity of the patient or their loved ones.

Presence Health first to be fined for delayed breach notification

HHS’s Office of Civil Rights (OCR) announced its first HIPAA enforcement action based solely on a healthcare facility not reporting a data breach in a timely manner. 

Foreign government suspected in Anthem cyber security breach

The California Department of Insurance has released its findings and settlement agreement in regards to the security breach of the insurance company Anthem. More than 78 million patient records, 12 million belonging to minors, were breached on January 27, 2015.

Wearables and the risk to users' data privacy

Most people don’t realize the risks to privacy and security posed by wearable devices. A report by researchers at American University and the Center for Digital Democracy includes recommendations and explanations for the primary concerns associated with wearable technologies.

Antibiotics, infection and patients who share hospital beds

Researchers have found that infections from Clostridium difficile, a bacterium that causes diarrhea and more serious intestinal conditions such as colitis, can pass from patient to patient after sharing the same hospital bed.

St. Joseph Health pays $2.14 million for patient information breach

St. Joseph Health (SJH) will be paying a $2.14 million settlement for potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules.

Need answers? HHS covers 11 questions on HIPAA, cloud computing

The U.S. Department of Health and Human Services (HHS) has released a guide on HIPAA and cloud computing in an effort to improve the security of patient information.