The U.S. Food and Drug Administration (FDA) and Department of Homeland Security (DHS) have announced a strengthened partnership to buff up medical device cybersecurity, increasing communication and coordination between the two agencies.
CS Digest Section: Healthcare Security
ABILIFY MYCITE, The First FDA Approved Digital Medicine That Tracks Its Own Ingestion
The ABILIFY MYCITE (aripiprazole) is a tablet with a tiny sensor embedded in its interior. After the tablet is swallowed and dissolved, the sensor meets the stomach juices, which activate it and allow it to communicate with a patch worn by the patient. The patch transmits its readings to a smartphone or tablet, communicating every time that the pill is
The Need for Increased Investment in Medical Device Security
In 2014, the FBI warned that healthcare systems, including medical devices, were at an increased risk of cyber-attacks due to the unfortunate coupling of poor cybersecurity practices in the healthcare industry with patient health information (PHI) that commands high value on the dark web. This warning has largely been realized. The cost and frequency of
$3.2 Million HIPAA Fine: An Analysis
A key lesson to be learned from this case "is that the Office for Civil Rights can only be pushed so far when a covered entity or business associate is shown to have systemic, management-driven failures in putting into place safeguards to protect its health information," says privacy attorney David Holtzman, vice president at the security consulting firm
http://www.databreachtoday.com/32-million-hipaa-fine-analysis-a-9665
Anthem Data Breach Reportedly Caused by Foreign Nation Attack
An investigation into the Anthem cyberattack found the identity of the attacker with a high degree of confidence” and “concluded with a medium degree of confidence that the attacker was acting on behalf of a foreign government.”
http://healthitsecurity.com/news/anthem-data-breach-reportedly-caused-by-foreign-nation-attack
Managing Medical Device Cybersecurity in the Postmarket: At the Crossroads of Cyber-safety and Advancing Technology
Protecting medical devices from ever-shifting cybersecurity threats requires an all-out, lifecycle approach that begins with early product development and extends throughout the product’s lifespan.
Study Finds Cyberthreat Data Overwhelming to Security Workers
While more organizations are likely looking for the best options to combat evolving cybersecurity threats, a recent study found that the majority of security professionals are overwhelmed by the amount of cyber threat data that they receive.
http://healthitsecurity.com/news/study-finds-cyberthreat-data-overwhelming-to-security-workers
$2 Million HIPAA Penalty After Patient Data Exposed on Web
In the twelfth HIPAA enforcement action so far this year, federal regulators have smacked St. Joseph Health System with a $2.14 million penalty after investigating a breach that left protected health information of nearly 32,000 individuals exposed to internet searches for more than a year.
What’s Needed: More HHS Guidance, or New HIPAA Security Rule?
Watchdog Report Calls for Expanded Security Guidance, But Some Experts Want New Rule.
Majority of Healthcare Leaders Elevating Cybersecurity As a Priority, According To HIMSS
But many say lack of financial resources and personnel is hindering better security practices.