Skip to main content

Government & Policy

By Armin Scheuer | 09:53 am | November 15, 2021
Raising digital maturity in the Middle East is a key focus in many GCC markets and HIMSS has therefore announced a high-level Dubai CIO Summit, on 23 January 2022, to drive regional and international exchange in support of ongoing digital maturity initiatives.
By Kat Jercich | 04:14 pm | November 12, 2021
Although some schedulers reported positive experiences, the Office of Inspector General found a host of problems with the system's implementation.
By Kat Jercich | 12:58 pm | November 12, 2021
Several outlets had pointed to Dr. Robert Califf, who also led the U.S. Food and Drug Administration in 2016, as the likely candidate prior to the official announcement.
By HIMSS TV | 09:48 am | November 12, 2021
This week's top stories include the Justice Department cracking down on international ransomware attacks and Medicare Part D plan consolidation fueling a 23% drop in offerings.
By Rachel McArthur | 07:44 am | November 12, 2021
The collaboration between the UAE capital’s Department of Health and Novartis will be dedicated to cardiovascular diseases – a leading cause of death in the Gulf nation.
By Bill Siwicki | 01:38 pm | November 11, 2021
Maria Palombini, a leader at the IEEE Standards Association, discusses the work of four high-profile women in healthcare standards creation – and highlights what women bring to the process.
By Mike Miliard | 10:00 am | November 11, 2021
Artificial intelligence is the "transformative technology of our time" and demands strong, smart regulation to enable its potential, says Brookings scholar Darrell M. West ahead of his appearance at HIMSS Machine Learning & AI for Healthcare.
By Kat Jercich | 01:14 pm | November 09, 2021
White House officials testified this past week that they have seen a "discernible decrease" in U.S.-targeted cyberattacks linked to Russia. As reported by The Hill, Chris Inglis, the country's first national cyber director, told the House Homeland Security Committee that it was too soon to tell why the number of incidents had lessened.   "It may well be that the transgressors in this space have simply lain low in understanding that this is for the moment a very hot time for them, and we need to ensure that that continues to be the case," said Inglis.   "I think in the longer term, we will be able to measure in a qualitative and a quantitative fashion what the diminishment of those efforts are," he added.   Inglis emphasized the importance of staying the course when it comes to cyber defenses, saying that the United States needs to "ensure that our strategy is solidified and brought to bear."  Inglis' remarks prefaced news that the Department of Justice had charged two individuals for deploying Russia-linked REvil ransomware against U.S. targets.   EHR vendor reports security breach   QRS, Inc. has begun notifying individuals of a cyberattack that involved the personal information, including the health information, of some of its clients' patients. QRS, a technology services company that offers electronic health record and practice management software, said in a notice on its website that it had discovered in August that one of its dedicated patient portal servers had been accessed. After taking the server offline and investigating, QRS determined that the attacker had accessed the server between August 23 and 26.    During that time, the attacker may have acquired files containing individuals' name, address, date of birth, Social Security number, patient identification number, portal username, and/or medical treatment or diagnosis information. According to the U.S. Department of Health and Human Services Office for Civil Rights Breach Portal, the incident affected 319,778 individuals. "Although QRS is not aware of any identity theft or fraud to any person as a result of this incident, it is notifying the potentially affected patients on behalf of its clients to advise them about the steps QRS has taken to investigate the incident and provide them with guidance about monitoring their information," wrote the company on its site.   Philips flags security vulnerability in EMR systems   Philips has issued an advisory regarding a version of its TASY Electronic Medical Record HTML5 system.   According to the alert, Philips said it had identified two potential vulnerabilities in system versions 3.06.1803 and prior that may allow SQL injection under certain conditions.   "Should this occur, a successful SQL injection attack can result in confidential patient data being exposed or extracted from the TASY database," said the company.    "Attackers could gain unauthorized access to Tasy EMR systems or accounts and, ultimately may lead to a Denial of Service to the database," the advisory continued.   Philips advised affected customers to upgrade to versions 3.06.1804 or later, which are not subject to the vulnerabilities.   "At this time, Philips has received no reports of exploitation of these vulnerabilities or incidents from clinical use that we have been able to associate with this problem. Philips' analysis has shown that it is unlikely that this vulnerability would impact clinical use," said the vendor.    "Philips' analysis also indicates there is no expectation of patient hazard due to this issue," said the alert.   Kat Jercich is senior editor of Healthcare IT News. Twitter: @kjercich Email: kjercich@himss.org Healthcare IT News is a HIMSS Media publication.
By Tammy Lovell | 07:30 am | November 09, 2021
The funding is for new technology to help tackle patient waiting lists.
By Kat Jercich | 04:36 pm | November 08, 2021
One of the accused, 22-year-old Yaroslav Vasinskyi, is reportedly suspected of attacking about 2,500 victims and raking in $2.3 million in ransom.