About four months, a security firm named Medsec discovered some flaws in St Jude Medical’s cardiac implantable products. The accepted way to deal with this is to privately let the manufacturer know what you found, let them fix it and then release your research. In this case, Medsec had been told that St. Jude would […]
Continue reading → [DISPLAY_ACURAX_ICONS]Why do hackers steal medical and health insurance information and what do they do with it? Why does your personal health information sell for 25 to 50 times what credit card information sells for? The first answer? Your credit card information is typically toast within 30 days of the first use, sometimes sooner. And of […]
Continue reading → [DISPLAY_ACURAX_ICONS]I wrote about 21st Century Oncology in March (see post here) when the FBI came knocking on their door. The result? 2.2 million records compromised. At that time they said that they likely did not have enough insurance to cover the costs of the breach. Fast forward six months. Law360 is reporting that Charter Oak […]
Continue reading → [DISPLAY_ACURAX_ICONS]Appalachian Regional Healthcare (ARH), which operates two hospitals in West Virginia and nine in Kentucky reported over the weekend that it was the target of a cyberattack that forced staff to revert to paper. No email, no electronic health records, no other electronic systems. Just paper. The hospitals are assessing whether to transfer critically ill […]
Continue reading → [DISPLAY_ACURAX_ICONS]The U.S. Department of Health and Human Services Office of Civil Rights, the government entity that manages the privacy of health care information that you share with doctors and others, has issued new guidance on ransomware. While technically, it only applies to organizations that they regulate, in reality, almost everything they said applies equally to […]
Continue reading → [DISPLAY_ACURAX_ICONS]I have written several times about the fight between Cottage Health System and Columbia Casualty, a division of CNA Insurance. In 2013 Cottage’s systems were breached and the private information of thousands of patients was publicly disclosed. Their insurance company paid $4.125 million for costs related to the breach, including a class action lawsuit. That […]
Continue reading → [DISPLAY_ACURAX_ICONS]