Search Results for hackermania

Hackermania meets The Dark Overlord with 2.3 million 2017 health data breaches

click to enlarge It’s a cage match! Reports are soaring, with a proliferation of data breaches year to date, after a relatively quiet period in 2016. The Dark Overlord (TDO), in the mainstream news with dumping unseen Netflix program episodes on illegal file-sharing sites and demanding ransom (Guardian), also has been hard at work dumping PHI hacked from various clinics. DataBreaches.net tallied it at 180,000 records from at least nine medical clinics. Health data security developer/provider Protenus, whose Breach Barometer tracks the numbers, counted 2.1 million breaches in 1st Quarter. March spiked with 700,000 coming from Commonwealth... Continue Reading

The cybersecurity black hole–and bad flashback–that is the Internet of Things

...a hacker at all.” Privacy by Design is not part of the vocabulary of the makers of these IoT gadgets Varonis also gives a how-to on changing settings in your router so you don’t become a victim, and how to secure your gadgets. Bottom line: when Hackermania is Running Wild, do you, or anyone, really need to be an early adopter of an internet- connected coffee maker or fridge? And if you need internet-connected home security, telemedicine virtual consults, telehealth/remote patient monitoring or telecare….best heed Varonis and secure it! Earlier in TTA: Friday’s cyberattack is a shot-over-bow for healthcare... Continue Reading

VA’s moves spell the end of the homegrown EHR

...and its growing concession that VistA won’t do in caring for American veterans makes it clear that the future of EHRs is in private systems from major developers–a field which is winnowing out to The Few (take that, GE). There is also the push to make them interoperable so that patient information can move between them–securely, an overwhelming concern with Hackermania Running Wild. Epic has been taking considerable heat for designing a closed system, which was vehemently denied in a recent interview with HealthcareITNews. The international struggle to develop EHRs generally starts with the push to create one central system... Continue Reading

Data breach cost crests $4 million: Ponemon Institute

...click to enlargeThe average fully allocated cost of a data breach, according to the 2016 Ponemon Institute study (sponsored by IBM) is now over $4 million. The average global cost of every lost or stolen record is $158, but for healthcare organizations, that average cost is $355 per record, which reflects the higher street value of healthcare information. Healthcare was the second most ‘churned’ type of organization, surpassed only by financial services. Across the industries surveyed, hacking and ‘inside jobs’ caused the most data breaches overall–48 percent. (Hackermania does really run wild!) Healthcare organizations can mitigate costs by... Continue Reading

Ransom! (ware) strikes more hospitals and Apple (update)–Healthcare.gov’s plus trouble

...Neil Versel in MedCityNews If you’re thinking Mac Prevents Attacks, the first ransomware targeting Apple OS X hit earlier this month. Mac users who downloaded version 2.90 of Transmission, a data transfer program using BitTorrent, were infected. KeRanger appears after three days to demand one bitcoin (about $400) to a specific address to retrieve their files. HealthcareITNews Finally, there is the Hackermania gift that keeps on giving: Healthcare.gov. There have been 316 security incidents, including 41 with PII, on Healthcare.gov since it opened its site in October 2013 to March 2015 per a Government Accountability Office (GAO) report earlier this... Continue Reading

Fitness trackers, mobile apps shown to leak sensitive data

...click to enlargeAn unnerving 35-page report published by Canadian nonprofit OpenEffect, assisted by the Citizen Lab at the Munk School of Global Affairs, University of Toronto, claims that leading fitness trackers and their corresponding mobile apps are veritable sieves of personal data, inviting security breaches. Where Hackermania Runs Wild starts with lack of Bluetooth LE privacy, allowing tracking via Bluetooth even when the tracker isn’t paired to a smartphone. Then many of the companion apps leaked login credentials, transmitted activity tracking information in a way that allowed interception or tampering, or allowed users (or others) to insert false... Continue Reading

The evolution of Facebook: implications for social health

...the site, you should expect that every piece of information you submit (even if it is not currently displayed) may be shared with our partners and any member of PatientsLikeMe, including other patients.” We’ve also noted that genomics data may not be sufficiently de-identified so that it can’t be matched through inference [TTA 31 Oct 15], with the potential for sale. And of course Hackermania Running Wild continues (see here). For now general information sites like WebMD and personalized reference sites such as Medivisor feel more secure to users, as well as small non-commercialized OSGs and ‘closed’ telehealth/telemedicine systems.... Continue Reading

Extent, cost of health ID theft exposed in Wall Street Journal

...healthcare equivalent of the FCBA, especially as healthcare organizations receive Federal funding. For healthcare providers, it would provide a bully incentive to tighten their security–as credit cards and banks did–because it would severely limit payment collections (the ‘hounding’) from the victims of fraudulent billing. How Identity Theft Sticks You With Hospital Bills Unfortunately the WSJ has chosen to paywall this article, but if you search on the title you can generally find the content either reprinted or in a WSJ preview. Previously in TTA: our many articles on hackermania, healthcare related identity theft (Harry Lime Lives!) and data security... Continue Reading

What’s news at the end of the week

...expected IPO next week. Wall Street Journal….Now an EHR and PHR join Hackermania Running Wild. Medical Informatics Engineering reported Tuesday that in May their server was cyberattacked, exposing PHI of patients in five clients and separately information contained in the NoMoreClipboard PHR subsidiary. POLITICO reports that this is the first recorded instance of an EHR compromise. MIE Release, POLITICO Morning eHealth….If you are in the Cleveland, Ohio area and have an interest, Concussion: A National Challenge is a free, two-day event on detection and diagnosis sponsored by the National Academy of Engineering, the Institute of Medicine, Case Western Reserve University,... Continue Reading

58 percent of health data breaches due to simple theft, not hacking: JAMA

...click to enlarge Criminal activity is the cause of nearly 6 out of 10 data breaches, according to a study published in JAMA last week (subscription required). Cyberbreaches–the infamous hacking attacks–produce breaches in the millions, but the far more typical and frequent breach, if smaller, is caused by simple theft of records–electronic and paper. HealthLeaders We’ve reported previously that stolen records (over 500) have ranged from laptops to paper records as landfill and even old-style X-rays in dead storage sought after for mercury content. So if Hackermania is not always running wild, except when it is, how to... Continue Reading