Posts Tagged ‘health information security’

Guest Post: Rethinking Healthcare Cybersecurity by Focusing on the Attacker, not the Attack

October 4th, 2018 by Ofer Israeli

Why are healthcare systems so challenging to secure? What is driving this complexity. How might we rethink our approach?

Healthcare systems, like all digital networks today are increasingly inter-connected and consumer-driven. The digital transformation necessary to make them agile, also renders them easy targets for data and identity theft, insurance fraud, and other forms of cybercrime. As the recent spate of ransomware has shown, cyberattacks on healthcare institutions also disrupt vital services and risk patient safety.

Beyond the health organization’s core staff, a wide variety of guests, students, visitors, patients, maintenance workers and others have direct physical access to healthcare systems and devices. Temporary workers and contractors require access to sensitive systems while employed. External interconnection of these systems with universities, research partners, and other remote services further mitigates the effectiveness of perimeter and access security controls. Higher and thicker security walls will not support the organization’s need to break down barriers, share information, and increase patient access.

Clearly, a new approach is required. If we cannot stop attacks, then we must stop the attackers. This is not a semantic nuance. The key to protecting healthcare systems in the future will be to transform our thinking—from a focus on defending ourselves from an infinitely expanding phalanx of attacks and attack vectors, to instead focus on disrupting the attack process itself regardless of attack style or source. We must stop the attackers.

As difficult as that might sound at first blush, there is, in fact, a silver bullet that will disrupt the vast majority of attacks. Malicious actors targeting healthcare systems all share a common trait that makes them vulnerable to disruption and detection. Regardless of how they enter a healthcare network, or what their intent, attackers must move laterally across the healthcare network to access their target applications, devices, systems, and data. To move undetected, they must gather intelligence about the environment and make careful decisions regarding their attack path.

The key then, quite simply, is to disrupt the attacker’s decision-making process—to blind and befuddle them so that they cannot progress their attack. Done well, cyber deception technology disrupts the attacker’s intelligence gathering process, and destroys their ability to make accurate decisions, by flooding the attack plane with false and misleading data. Similar in effect to evasive maneuvers used in aerial combat such as disgorging flak, disrupting radar, and disorienting GPS signals, these new technologies destroy the attacker’s ability to navigate, and ensure they are detected by any movement they do decide to make.

The challenges of securing healthcare systems will continue to grow as attackers, and their tools, methods, and infrastructure, become more sophisticated and diverse. Just as digital transformation is improving efficiency and patient outcomes, the traditional security mindset must be transformed to a modern security mindset. To protect these new system architectures, we must refocus our efforts from defending against attacks to disrupting the attack process itself. Deception offers a promising path forward in this direction.

Ofer Israeli

Ofer Israeli

About the Author: Ofer Israeli, founder and CEO of Illusive Networks, pioneered deception-based cybersecurity. He leads the company at the forefront of the next evolution of cyber defense. Prior to establishing Illusive Networks, Mr. Israeli managed development teams based around the globe at Israel’s seminal cybersecurity company Check Point Software Technologies and was a research assistant in the Atom Chip Lab focusing on theoretical Quantum Mechanics.

Infographic: 2018 Health Data Breaches Fast Facts

August 1st, 2018 by Melanie Matthews

There have been 165 healthcare data breaches so far in 2018, affecting 3.2 million people, according to a new infographic by Optimum Healthcare IT.

The infographic examines the types of breaches that have occurred.

Healthcare Trends & Forecasts in 2018: Performance Expectations for the Healthcare IndustryHealthcare Trends & Forecasts in 2018: Performance Expectations for the Healthcare Industry, HIN’s 14th annual business forecast, is designed to support healthcare C-suite planning as leaders react to presidential priorities and seek new strategies for engaging providers, patients and health plan members in value-based care.

HIN’s highly anticipated annual strategic playbook opens with perspectives from industry thought leader Brian Sanderson, managing principal, healthcare services, Crowe Horwath, who outlines a roadmap to healthcare provider success by examining the key issues, challenges and opportunities facing providers in the year to come. Following Sanderson’s outlook is guidance for healthcare payors from David Buchanan, president, Buchanan Strategies, on navigating seven hot button areas for insurers, from the future of Obamacare to the changing face of telehealth to the surprising role grocery stores might one day play in healthcare delivery. Click here for more information.

Get the latest healthcare infographics delivered to your e-inbox with Eye on Infographics, a bi-weekly, e-newsletter digest of visual healthcare data. Click here to sign up today.

Have an infographic you’d like featured on our site? Click here for submission guidelines.

Infographic: HIPAA Compliance Checklist & Healthcare Cybersecurity Awareness

July 30th, 2018 by Melanie Matthews

While Health Insurance Portability and Accountability Act audits by the Department of Health and Human Services (HHS) continue to ramp up, healthcare organizations have seen penalties and settlement agreements between healthcare organizations and HHS in the millions of dollars, according to a new infographic by eFax Corporate.

The infographic provides a checklist of important information to help healthcare organizations with HIPAA compliance.

Healthcare Trends & Forecasts in 2018: Performance Expectations for the Healthcare IndustryHealthcare Trends & Forecasts in 2018: Performance Expectations for the Healthcare Industry, HIN’s 14th annual business forecast, is designed to support healthcare C-suite planning as leaders react to presidential priorities and seek new strategies for engaging providers, patients and health plan members in value-based care.

HIN’s highly anticipated annual strategic playbook opens with perspectives from industry thought leader Brian Sanderson, managing principal, healthcare services, Crowe Horwath, who outlines a roadmap to healthcare provider success by examining the key issues, challenges and opportunities facing providers in the year to come. Following Sanderson’s outlook is guidance for healthcare payors from David Buchanan, president, Buchanan Strategies, on navigating seven hot button areas for insurers, from the future of Obamacare to the changing face of telehealth to the surprising role grocery stores might one day play in healthcare delivery. Click here for more information.

Get the latest healthcare infographics delivered to your e-inbox with Eye on Infographics, a bi-weekly, e-newsletter digest of visual healthcare data. Click here to sign up today.

Have an infographic you’d like featured on our site? Click here for submission guidelines.

Infographic: Statewide Health Information Network for New York

March 23rd, 2018 by Melanie Matthews

The Statewide Health Information Network for New York (SHIN-NY) is a statewide network that facilitates secure and confidential sharing of patient data across the healthcare system to improve outcomes. The SHIN-NY is comprised of eight Qualified Entities (QEs) that are regional health information exchanges, according to a new infographic by the New York eHealth Collaborative, which leads the advancement of SHIN-NY.

The infographic examines how SHIN-NY works, the information that can be shared and the benefits to patients and providers.

Health Analytics in Accountable Care: Leveraging Data to Transform ACO Performance and Results Between Medicare’s aggressive migration to value-based payment models and MACRA’s 2017 Quality Payment Program rollout, healthcare providers must accept the inevitability of participation in fee-for-quality reimbursement design—as well as cultivating a grounding in health data analytics to enhance success.

As an early adopter of the Medicare Shared Savings Program (MSSP) and the largest sponsor of MSSP accountable care organizations (ACOs), Collaborative Health Systems (CHS) is uniquely positioned to advise providers on the benefits of data analytics and technology, which CHS views as a major driver in its achievements in the MSSP arena. In performance year 2014, nine of CHS’s 24 MSSP ACOs generated savings and received payments of almost $27 million.

Health Analytics in Accountable Care: Leveraging Data to Transform ACO Performance and Results documents the accomplishments of CHS’s 24 ACOs under the MSSP program, the crucial role of data analytics in CHS operations, and the many lessons learned as an early trailblazer in value-based care delivery.

Get the latest healthcare infographics delivered to your e-inbox with Eye on Infographics, a bi-weekly, e-newsletter digest of visual healthcare data. Click here to sign up today.

Have an infographic you’d like featured on our site? Click here for submission guidelines.

Infographic: Cybersecurity in Healthcare

February 12th, 2018 by Melanie Matthews

Cybersecurity threats in the healthcare industry remain stronger than ever, and data breaches remain a top concern, according to a new infographic by Symantec.

The infographic examines the progress healthcare organizations have made in addressing cybersecurity risks and where gaps still exist.

Healthcare Trends & Forecasts in 2018: Performance Expectations for the Healthcare IndustryHealthcare Trends & Forecasts in 2018: Performance Expectations for the Healthcare Industry, HIN’s 14th annual business forecast, is designed to support healthcare C-suite planning as leaders react to presidential priorities and seek new strategies for engaging providers, patients and health plan members in value-based care.

HIN’s highly anticipated annual strategic playbook opens with perspectives from industry thought leader Brian Sanderson, managing principal, healthcare services, Crowe Horwath, who outlines a roadmap to healthcare provider success by examining the key issues, challenges and opportunities facing providers in the year to come. Following Sanderson’s outlook is guidance for healthcare payors from David Buchanan, president, Buchanan Strategies, on navigating seven hot button areas for insurers, from the future of Obamacare to the changing face of telehealth to the surprising role grocery stores might one day play in healthcare delivery. Click here for more information.

Get the latest healthcare infographics delivered to your e-inbox with Eye on Infographics, a bi-weekly, e-newsletter digest of visual healthcare data. Click here to sign up today.

Have an infographic you’d like featured on our site? Click here for submission guidelines.

Infographic: 5 Questions Patients Should Ask About Healthcare Information Security

September 8th, 2017 by Melanie Matthews

Patients need to understand the information security protections by their healthcare providers, according to a new infographic by ISACA.

The infographic outlines a few questions that patients can ask of their providers to ensure that those organizations are applying
appropriate and diligent stewardship of the data that they hold in trust.

UnityPoint Health has moved from a siloed approach to improving the patient experience at each of its locations to a system-wide approach that encompasses a consistent, baseline experience while still allowing for each institution to address its specific needs.

Armed with data from its Press Ganey and CAHPS® Hospital Survey scores, UnityPoint’s patient experience team developed a front-line staff-driven improvement action plan.

Improving the Patient Experience: Engaging Front-line Staff for a System-Wide Action Plan, a 45-minute webinar on July 27th, now available for replay, Paige Moore, director, patient experience at UnityPoint Health—Des Moines, shares how the organization switched from a top-down, leadership-driven patient experience improvement approach to one that engages front-line staff to own the process.

Get the latest healthcare infographics delivered to your e-inbox with Eye on Infographics, a bi-weekly, e-newsletter digest of visual healthcare data. Click here to sign up today.

Have an infographic you’d like featured on our site? Click here for submission guidelines.

Infographic: The Future of Blockchain Technology in Healthcare

July 14th, 2017 by Melanie Matthews

Blockchains are a new data structure that creates trusted, distributed digital ledgers for assets and other data. It’s an immutable record of digital events shared peer to peer. Blockchains can only be updated by consensus of a majority of the participants in the system and, once entered, information is very hard to erase, according to a new infographic by Frost & Sullivan.

The infographic looks at the core properties of blockchains, themes for blockchain technology in healthcare and use cases, challenges and key benefits.

Health Analytics in Accountable Care: Leveraging Data to Transform ACO Performance and Results Between Medicare’s aggressive migration to value-based payment models and MACRA’s 2017 Quality Payment Program rollout, healthcare providers must accept the inevitability of participation in fee-for-quality reimbursement design—as well as cultivating a grounding in health data analytics to enhance success.

As an early adopter of the Medicare Shared Savings Program (MSSP) and the largest sponsor of MSSP accountable care organizations (ACOs), Collaborative Health Systems (CHS) is uniquely positioned to advise providers on the benefits of data analytics and technology, which CHS views as a major driver in its achievements in the MSSP arena. In performance year 2014, nine of CHS’s 24 MSSP ACOs generated savings and received payments of almost $27 million.

Health Analytics in Accountable Care: Leveraging Data to Transform ACO Performance and Results documents the accomplishments of CHS’s 24 ACOs under the MSSP program, the crucial role of data analytics in CHS operations, and the many lessons learned as an early trailblazer in value-based care delivery.

Get the latest healthcare infographics delivered to your e-inbox with Eye on Infographics, a bi-weekly, e-newsletter digest of visual healthcare data. Click here to sign up today.

Have an infographic you’d like featured on our site? Click here for submission guidelines.

Infographic: Hospital Holes for Hackers

June 16th, 2017 by Melanie Matthews

Nearly 90 percent of healthcare organizations had a data breach in the past two years, and nearly half, or 45 percent had more than five data breaches in the same time period, according to statistics cited in a new infographic by SecureWorks.

The infographic examines the impact of data breaches and where hospital security holes can be found and what organizations should do to address these potential risks.

Covered Entity Manual Covered Entity Manual is a template-style download manual that can be easily adapted to align with your compliance needs as a covered entity. All content complies with the Omnibus Rule.

Covered Entity-Specific Manual provides you with a generic, comprehensive set of policies and procedures: 33 privacy policies; 30 security policies; 6 policies that address common requirements of both the privacy and security rules; 1 breach notification policy; and 12 forms and templates, including a notice of privacy practices.

Get the latest healthcare infographics delivered to your e-inbox with Eye on Infographics, a bi-weekly, e-newsletter digest of visual healthcare data. Click here to sign up today.

Have an infographic you’d like featured on our site? Click here for submission guidelines.

Infographic: Protecting Patient Data in Today’s Digital Healthcare World

April 19th, 2017 by Melanie Matthews

The healthcare industry continues to ride the digital wave to improve patient care and organizational efficiency while reducing costs. Hospitals and health systems are relying on electronic health records, the cloud, and the Internet of Things (IoT) more than ever. While these technologies are convenient, efficient, and enable a higher degree of patient-centric care, they can be jeopardized by cybercriminals, according to a new infographic by Fortinet.

The infographic examines how healthcare organizations can protect their patients’ data in a digital healthcare landscape.

2016 Healthcare Benchmarks: Data Analytics and IntegrationThe 2016 Healthcare Benchmarks: Data Analytics and Integration assembles hundreds of metrics on data analytics and integration from hospitals, health plans, physician practices and other responding organizations, charting the impact of data analytics on population health management, health outcomes, utilization and cost.

2016 Healthcare Benchmarks: Data Analytics and Integration examines the goals, data types, collection processes, program elements, challenges and successes shared by healthcare organizations responding to the January 2016 Data Analytics survey by the Healthcare Intelligence Network. Click here for more information.

Get the latest healthcare infographics delivered to your e-inbox with Eye on Infographics, a bi-weekly, e-newsletter digest of visual healthcare data. Click here to sign up today.

Have an infographic you’d like featured on our site? Click here for submission guidelines.

Infographic: Healthcare Data Breaches in 2016

February 20th, 2017 by Melanie Matthews

Data breaches in the healthcare industry are increasing every year at an alarming rate, according to a new infographic by Kays Harbor.

In 2016, there were a total of 326 breach incidents, according to the United States Office of Civil Rights. The number of breach incidents is increasing despite awareness, HIPAA regulations, guidelines and strict measures to protect patient privacy.

The infographic drills down on the breaches that occurred in 2016 and how to minimize the risk of a breach this year.

Healthcare Data Breaches in 2016

HIPAA Training for Employees DVD
HIPAA Training for Employees DVD provides training on the following: privacy rule basics; use and disclosures; patient rights; employee behaviors to safeguard patient information; security rules; safeguards to protect patient information electronically; HITECH; breach identification and notification; enforcement; and level of fines.

Get the latest healthcare infographics delivered to your e-inbox with Eye on Infographics, a bi-weekly, e-newsletter digest of visual healthcare data. Click here to sign up today. Have an infographic you’d like featured on our site? Click here for submission guidelines.