More Major Hacking Incidents Added to HHS Breach Tally

Latest Analysis of Federal Health Data Breach Reporting Site … Keith Fricke, principal consultant at privacy and security consulting firm tw-Security, offers a similar assessment. “Incident response and forensic investigation takes time, especially when the victim organization is large and has voluminous data and logs to review to determine scope of a breach,” he says. […]

Read More

Illinois Clinic Says Nearly 503,000 Affected in Email Breach

Incident Involved a Single User’s Compromised Email Account … “In some cases, hackers are trying to have an employee’s direct deposit for payroll to be re-directed to an offshore bank,” says Tom Walsh, president of privacy and security consulting firm tw-Security. “For example, if an email account gets compromised, the hacker can send an email […]

Read More

2 Healthcare Hacking Incidents Affect 310,000 Patients

Experts Urge Entities to Bolster Security Now, Before They Become Similar Victims … “Strengthening security controls should have been on the radars of healthcare organizations for many years now,” says Keith Fricke, principal consultant at privacy and security consultancy tw-Security. Current challenges in implementing these controls include a national shortage of information security professionals and the […]

Read More

Hacks Causing Most Big Health Data Breaches So Far in 2022

Only One Other Type of Breach Has Been Posted to the Federal Tally This Year Keith Fricke, principal consultant at privacy and security consultancy tw-Security, says it is a challenge for many covered entities and business associates to monitor the “surface area” of their organizations, especially if they are focused on preventing and detecting hacking […]

Read More

Drug Testing Lab Portal Incident Exposed Data for 4 Years

How Can Other Entities Avoid Similar Misconfiguration Mishaps? … “Because portals, by definition, are externally facing, they are accessible via the internet, which automatically means they are more likely to be targets for attackers,” says Tom Walsh, founder of privacy and security consultancy tw-Security. … Portals “tend to be about one person obtaining data about themselves […]

Read More

Record Number of Major Health Data Breaches in 2021

Analysis: Federal Tally Shows Breaches Climbing Annually, Hacks Dominating … “Breaches will increase as businesses continue to automate more. Data is the new currency in the cyber world,” says Tom Walsh, founder of privacy and security consultancy tw-Security. … Hacking incidents in particular will continue to plague the healthcare sector, Walsh says. “Hackers have stepped […]

Read More

Vendor: Data Breach Involved Security Product Vulnerability

Clinical Review Firm: Nearly 135,000 Individuals, Dozens of Health Plans Affected … Tom Walsh, founder of privacy and security consultancy tw-Security, says that vulnerabilities can also arise in how a user organization configures a product, such as one provided by SonicWall or any other vendor. “The organization using the product/tool – in this case SonicWall […]

Read More

A national unique patient identifier faces an uncertain, bumpy road

Recent legislative action may clear the path for developing a uniform, accurate and effective way to tie data to patients, but challenges are looming. … There’s also the question of rollout. Initially, a UPI would be added into patient records as patients engage in the healthcare system, says Susan Lucci, senior privacy/security consultant with tw-Security […]

Read More