Privacy & Security

Also: Kaiser Permanente reported that an unauthorized party gained access to the email accounts of two workforce members and viewed patient health information. 

Eric Liederman, chief executive officer of CyberSolutionsMD, says developing an "all of us approach" on what to do and how to do it can help even advanced organizations protect healthcare delivery when ransomware hits or affects a nearby hospital.

Hospitals didn't have Change Healthcare on their radar as a risk when the ransomware attack affected them, says John Riggi.

Jonathan Bauer, CIO at Atlantic General Hospital Health System, says when Change Healthcare was attacked and Atlantic couldn't bill for a month, it helped bring the need for a robust cybersecurity system front of mind to board members.

Information telemetry and analysis can be aided by component pieces of large language models, says Darren Lacey, CISO at Johns Hopkins.

At the HIMSS Healthcare Cybersecurity Forum on Thursday, leaders from the Health Sector Coordinating Council offered advice for a collaborative layered defense to help health systems bolster responsiveness and stabilize their security postures.

Previewed at the company's annual summit, the electronic health record, built on Oracle Cloud Infrastructure, offers secure automation across clinical workflows, enabling faster insights at the point of care with streamlined documentation and more.

The agency warns that a Western organized cybercrime group may be targeting healthcare data by leveraging ransomware variants and AI tools that exploit advanced social engineering.

The Office of Management and Budget will consider HHS' approach to modernizing requirements for HIPAA covered entities charged with protecting ePHI against healthcare cybersecurity threats. Reports say the rule could be published by year's end.

A new white paper defines optimal clinical workflows as minimising authenticators without compromising on cybersecurity.