Drug diversion, AI and machine learning, social engineering, insider threats: 2018 was a year of growing awareness of advanced healthcare data security threats, privacy considerations, and the proliferation of data across cloud applications like Salesforce. So what were readers most interested in this past year? Here, we present the top 10 most popular healthcare information security, privacy, and compliance content from 2018.
Healthcare organizations can be quite vulnerable to social engineering attacks — a form of human emotional-manipulation that attempts to convince your users and employees to hand over sensitive information or run malicious code. Ransomware attacks, in general, are growing among healthcare organizations, with damages predicted to total $11.5 billion in 2019. And while email solicitation remains the most common type of social engineering, some attackers are using more sophisticated tactics. This article reveals the top five most common social engineering tactics to help you train users on how to handle ePHI requests, spot social engineering attempts, and better safeguard patient information.
Artificial intelligence (AI) has seen rapid innovations over the last few years. If used correctly, it can empower care providers to make better diagnoses, provide better patient care, and improve access to healthcare. It can also transform healthcare privacy and security. In this blog post, we outline what, exactly, constitutes AI in healthcare. Then, we explain five ways healthcare organizations today are using AI and machine learning to empower their staff, enhance care, and protect patient data?
Compared with other industries, healthcare faces an advanced set of challenges to secure data. There’s no single contributing factor, but a wide array of industry obstacles can make it challenging to secure PHI and ensure patient privacy. On top of this, healthcare is a highly regulated industry where compliance missteps and data breaches can wreak fiscal and reputational damage upon organizations. Here, we break down the results of the Verizon 2018 Protected Health Information Data Breach Report and reveal the No. 1 threat to ePHI.
Drug diversion in healthcare facilities has become a growing problem in recent years. It can affect patients, care providers, drug diverters, and the community at large. Fueled mainly by the opioid epidemic, drug diversion has tasked healthcare facilities with catching and reporting incidents of employee misconduct. But these facilities may quickly become overwhelmed with the task of detecting, investigating, and preventing future incidents. This whitepaper outlines how drug diversion can affect a healthcare facility’s security and compliance and offers practical tips on how to create a full lifecycle drug diversion monitoring program.
A longtime leader in high-quality healthcare services for South Florida residents, Memorial Healthcare is one of the largest public healthcare systems in the nation. Its also highly regarded for its exceptional patient- and family-centered care and focus on patient privacy. But that wasn’t always the case. Here, Memorial CISO Richard Leon explains how he transformed the hospital’s privacy monitoring program into a world-class operation in the wake of a multi-million dollar breach.
In PwC’s 2017 Global Digital IQ Survey, 31 percent of healthcare executives said AI is the most disruptive technology in the industry, outranking IoT, 3D printing, and robotics. These factors, combined with the influx of vendors with machine learning capabilities, have made it more critical than ever to understand the foundation of AI technology – and how to use it in a way that increases, rather than diminishing, patient trust. On this FairWarning Executive Series webinar, HIPAA legal expert Iliana Peters of Polsinelli discussed how AI can empower providers – and key considerations for implementing AI in healthcare moving forward.
IBM Released Its 2018 Data Breach Study, and Financial Services and Healthcare Organizations are Taking Note to Prevent Data Breaches
Healthcare data breaches cost the industry most than any other, making it imperative to safeguard patient data. In this robust breakdown of the 2018 IBM Data Breach study, we explore the root causes of healthcare data breaches, how a delay in spotting breaches can significantly increase that cost, and how to approach breach prevention in the threat landscapes of today and tomorrow.
In the largest ever healthcare fraud enforcement action in history, 601 defendants were charged — including 165 doctors, nurses, and other licensed medical professionals — in drug diversion and fraud schemes resulting in over $2 billion in false billings. This crackdown on drug diversion comes as no surprise: In February and March 2018, the DEA spearheaded drug diversion investigations with help from the HHS. These led to 28 arrests, 54 enforcement actions, 150 dispensing authority revocations, and 283 administrative actions. And the DEA continues to investigate individuals and companies that may be contributing to the opioid crisis, enlisting help from 41 state attorneys and the DOJ’s Opioid Fraud and Detection Unit now operating in 12 federal districts.
Healthcare organizations are seeing ePHI crop up in more places than ever before. The average healthcare system runs 16 EMRs alone — nevermind clinical and specialty applications. Now, with more ePHI finding its way into programs like Office 365 and Salesforce, it’s more important than ever for healthcare organizations to maintain visibility into how users are accessing which ePHI, and what’s being done with it. The 2018 Cloud Visibility Report reveals, for the first time, the priorities of real organizations when it comes to increasing Salesforce visibility and monitoring cloud-based applications.