...out the VA/Oracle EHR in ‘waves’, Fuze Health formed from LetsGetChecked/Truepill, hacking and ransomware 92% of PHI data breaches (A renaming of a 2024 ‘arranged marriage’–can it be saved?) News roundup: Hinge Health public @$32/share, lower valuation. Is WeightWatchers game over? Calibrate replaces CEO, new prez for Oak Street, NMC gets ‘Smarter’ rolling up 3 portfolio companies, another splash of investor ‘cold water’ (The first health tech IPO in 2 years and ‘smushing’ when they can’t) Update: Masimo’s website status and an analysis of the Sound United sale (Getting up and running post-attack, but what happened?) 23andMe sold to Regeneron... Continue Reading
Search Results for breaches
TTA’s Blooming Spring 5: Hinge Health’s IPO, 23andMe bought by Regeneron, sans Lemonaid, WeightWatchers’ future, debuts of Smarter Technologies and Fuze Health, VA EHR update, more!
...Monday newsletter will be on Tuesday. News roundup 22 May: an inflight ‘save’ and AliveCor’s KardiaMobile, rolling out the VA/Oracle EHR in ‘waves’, Fuze Health formed from LetsGetChecked/Truepill, hacking and ransomware 92% of PHI data breaches (A renaming of a 2024 ‘arranged marriage’–can it be saved?) News roundup: Hinge Health public @$32/share, lower valuation. Is WeightWatchers game over? Calibrate replaces CEO, new prez for Oak Street, NMC gets ‘Smarter’ rolling up 3 portfolio companies, another splash of investor ‘cold water’ (The first health tech IPO in 2 years and ‘smushing’ when they can’t) Update: Masimo’s website status and an analysis... Continue Reading
News roundup 22 May: an inflight ‘save’ and AliveCor’s KardiaMobile, rolling out the VA/Oracle EHR in ‘waves’, Fuze Health formed from LetsGetChecked/Truepill, hacking and ransomware 92% of PHI data breaches
...the more common causes were insider theft, unauthorized access/disclosure, and improper disposal or loss. They have nearly vanished as the ‘business of breaches’ has settled down and internal security has approved. A cross-sectional study published as a research letter in JAMA Network surveyed breaches from 2009 to 2024 using HHS’s Office of Civil Rights (HHS-OCR) reporting. Of 566 incidents in 2024, 457 were “IT incidents” and 61 were tagged as ransomware, totaling 92%. Despite the massive Change Healthcare breach, ransomware breaches fell to 11%. Considering patient records, there were 170 million breached in 2024 and hacking/IT incidents accounted for 91%... Continue Reading
Update: Masimo’s website status and an analysis of the Sound United sale
...and manufacturing systems. This Editor will be waiting to see if the new Masimo will be transparent with customers, investors, and the press as to what happened, the remediation of their systems, and securing their IT. Customers will need reassurance that their continuous monitoring and patient-worn monitoring devices are secure. Moreover, Health and Human Services’ Office of Civil Rights (HHS-OCR) requires reports of data breaches affecting or potentially affecting protected health information (PHI). I will also be waiting to see if their consumer health wearables bounce back and go back on sale (they are currently unavailable)–after winning their fights with... Continue Reading
Walgreens’ misery level rises some more: Federal court affirms $987M award to PWNHealth/Everly Health. Plus selling $295M in Cencora shares, drawing down to 6%.
...be done by PWN/Everly’s network. This breached the exclusive Master Services Agreement (MSA) with PWN/Everly. Walgreens terminated the MSA effective 1 June 2022. PWN/Everly on 10 June 2022 then initiated the arbitration with the American Arbitration Association alleging breach of contract, a violation of the Latham Act on trademarks, plus additional breaches and violations. In March 2024, the arbitrator awarded PWN/Everly $987 million. This was 12 times the contractually specified $79 million in damages. Arbitration text and decision in Jus Mundi Immediately after the arbitration, Walgreens filed suit in Delaware to vacate the ruling on the grounds that it contravened... Continue Reading
Two ‘oops’ at VA: OIG finds VA, Oracle performance misalignments, makes 9 recommendations; VP candidates’ EHR records improperly accessed by VA employees
...during this audit, determining if additional actions need to be taken and, if so, providing an action plan. VA release, Healthcare IT News Some VA employees got very naughty in looking up information on the two VP candidates. Both Ohio Senator JD Vance and Minnesota Governor Tim Walz are both veterans (Marines and Army National Guard, respectively). The breaches were discovered in August during a security sweep of high-profile health accounts held in the VA’s EHR. 12 employees used their VA computers to access information on Vance and Walz. These included physicians and a contractor viewing for an “extended time”.... Continue Reading
Short takes: states curbing healthcare cyberattack liability, North Korean hospital ransomwareiste indicted, Walmart leases out 23 clinics to Humana’s CenterWell, Nuro robot delivery revives, $100M Series E for Spring Health
News that class-action specialist law firms won’t like. States are considering limiting hospital cyberattack liability if they adopt cybersecurity measures. Currently, four states–Tennessee, Connecticut, Ohio, and Utah–have laws that curb liability for cyberattacks and data breaches. A fifth state, Florida, is considering it with the governor, Ron DeSantis, pushing for a tougher version to encourage strong cybersecurity adoption. The state lawmakers’ rationale centers on the admission that cyberattacks on hospitals are inevitable and that when hospitals have security in place, they are not negligent. On the opposite side, law firms that specialize in consumer class-action lawsuits argue that hospitals would... Continue Reading
Perspectives: Embracing the Power of EiPaaS in 2024 and Beyond
...Often, healthcare providers hire vendors without vetting their cybersecurity stance, which puts their services and patients’ information at risk. In 2023, there were 725 large data breaches in the healthcare sector, exposing over 133 million records. Hacking incidents accounted for 79.72% of these breaches (The HIPAA Journal) (HHS.gov) (The HIPAA Journal). EiPaaS solutions feature up-to-date compliance, secure data sharing, and encryption, ensuring that digital services are safe and trusted. Scalability is another significant advantage of EiPaaS. One of the biggest benefits is the ability to grow and shrink based on customer demand. This flexibility allows healthcare providers to handle large... Continue Reading
News roundup: Change responsible for data breach notices; 37% of healthcare orgs have no cybersec contingency plan; health execs scared by Ascension breach; CVS continues betting on health services; Plenful’s $17M Series A
...last three years 42% of practices have experienced a ransomware attack, and of those, 48% say the attack impacted customer data 34% failed to recover data after the ransomware attack 55% of medical practices allow access to more data than employees need to do their job which makes them more vulnerable to attacks While 41% of data breaches are attributable to malicious hacking, another 39% are due to malware, 37% are due to social engineering and phishing scams, 36% are due to software vulnerabilities, and 30% are due to employee error. It would have been helpful if Software Advice in... Continue Reading
News roundup: UHG CEO’s Bad Day at Capitol Hill; Kaiser’s 13.4M data breach; Walgreens’ stock beatup; Cigna writes off VillageMD; Oracle Cerner shrinks 50%; Owlet BabySat gets Wheel; fundings for Midi, Trovo, Alaffia, Klineo
...Witty’s Senate testimony statement, House testimony statement Speaking of data breaches, Kaiser Permanente reported a big one to Health and Human Services (HHS). This relates to ad tracker information shared with third-party advertisers such as Google, Microsoft, and X. Kaiser used it in secured areas of their website and mobile apps. Information disclosed could be name and IP. Kaiser reported it on 12 April but only disclosed on 25 April that 13.4 million records may have been affected. The ad trackers have since been removed. TechCrunch, FierceHealthcare Walgreens stock not recovering. April was WBA’s worst month in five years and... Continue Reading
Most Recent Comments