As majorly disruptive cyberattacks continue to make headlines in the healthcare world, hospitals are prioritizing cybersecurity more than ever before. This piece explores reactions from five different health system executives about the recent attack on Ascension — as well as what they’re doing to prevent a similar fate at their own organization and how they want things to change going forward.
During a fireside chat at MedCity News’ INVEST conference, Nitin Natarajan — deputy director at the Cybersecurity and Infrastructure Security Agency (CISA) — shared some key ideas that people need to understand about the current state of cybersecurity in the healthcare industry. For instance, he reminded us that things won’t get better overnight, and that cybersecurity requires an all-hands-on deck approach.
In an era of escalating healthcare costs and a growing preference for natural, holistic approaches to health, The Impact Brands emerges as a collective of diverse brands dedicated to supporting overall wellness through natural means.
On Wednesday, Ascension noticed that a hacker had infiltrated its systems. As the health system works with Mandiant to investigate the incident, clinical services remain disrupted at Ascension facilities across several states.
Andrew Witty, CEO of UnitedHealth Group, faced bipartisan outrage from senators on the Senate Finance Committee angered by his company's cybersecurity failures. Here were the key moments from the hearing on Wednesday.
Achieving strong cybersecurity is a vast, interconnected web that must incorporate the correct software, procedures, and workflows and take into account the human element across an entire organization.
Healthcare industry leaders think there is much to learn from the Change Healthcare cyberattack, and they hope the sector can apply these lessons to prevent a hack like this from ever happening again. Overall, the chaotic aftermath of the attack underscores the dire need for a more unified approach to cybersecurity within the healthcare sector.
At the Payer Insights sessions on Day 1 of ViVE 2024, a panel on prior authorization offered compelling insights from speakers who shared the positive developments in this area after years of mounting frustration. Speakers also shared challenges as they work with providers to figure out how policy developments and technology will work in practice.
After a healthcare cyberattack, the impacted organization often doesn't want to divulge a lot of information, Intermountain Health CISO Erik Decker said last week at HIMSS. However, he thinks healthcare organizations should be more transparent with their peers after an attack because "no one system operates independent of everybody else."
The aftermath the cyberattack on Change Healthcare remains messy, with patients across the country still struggling to obtain their prescriptions. The federal government has even stepped in to help address the fallout of the attack, urging payers to quickly alleviate the digital bottlenecks that providers and pharmacies are facing.
Pharmacies across the country are facing disruptions following a cyberattack on Change Healthcare — which is owned by Optum, a subsidiary of UnitedHealth Group. In a filing with the SEC, UnitedHealth stated that the unauthorized party that gained access to Change Healthcare's systems was a “suspected nation-state associated cyber security threat actor."
Mari Savickis, Vice President of Public Policy with CHIME, will be moderating a panel discussion as part of the Cybersecurity Pavilion at the ViVE 2024 event in Los Angeles, scheduled for February 25-28. She said her organization anticipates several developments addressing cybersecurity this year.
The TSX Venture Exchange has a strong history of helping early-stage health and life sciences companies raise patient capital for research and development.
There is growing and coordinated momentum behind the goal of ensuring connected medical devices improve people’s lives without introducing them to cybersecurity threats and associated safety risks. There also is a proven playbook for implementing the type of multi-layered, security-by-design strategies these initiatives advocate.
HHS recently published guidance outlining voluntary cybersecurity performance goals for the healthcare sector. Taylor Lehmann, a cybersecurity executive at Google Cloud, noted that "what is on HHS paper will most likely become what is in the actual final rulemaking or new regulatory requirements that become law."
From our experience providing identity management services to healthcare SaaS companies, here are five rules for building more secure SaaS applications. The list can serve as a guide either for healthcare organizations looking to move key operations to SaaS or to makers of SaaS applications for healthcare customers.
Many hospitals remain underprepared to protect themselves against cybercriminals’ barrage of increasingly sophisticated attacks, but there are a couple concrete steps they can take to build a stronger defense structure — like virtual patching and thinking twice about moving to the cloud.
While more generative AI tools are becoming available in healthcare for diagnostics and patient communication, it is important for clinicians and healthcare staff to be aware of the security, privacy, and compliance risks when entering protected health information (PHI) into a tool like ChatGPT.