Health IT Briefing March 25-29
Healthcare’s 5 Most Exploitable Cyberattack Vectors And How To Secure Them
Healthcare organizations are amongst the most vulnerable operations for security attacks. Not only are they a profitable target for attackers with highly critical information on the line, there are also major downtime risks leaving the organizations very vulnerable to a unique set of security attack vectors. The newest attack vector are the cloud based portals because even though it increases the efficiency and quality of care they are finding that quite often, when a physician logs into a cloud-based portal, they don’t log out which leaves sensitive data dangerously exposed. Some of the ways to secure and lock down these portals are through employing data protection, enforcing compliance policies consistently across multiple clouds, the use of mobile device security and the effective implementation of malware and ransomware.
CMS launches new AI innovation challenge
Information is finally out about a new artificial intelligence challenge aimed at creating tools to better predict patient health outcomes. The central goal is to develop artificial intelligence-driven predictions that healthcare providers and clinicians participating in the CMS Innovation Center models can use. Last year, Google released a study that found its AI-based software was more effective at predicting patient outcomes than other methods currently available. One of the major benefits of artificial intelligence in healthcare, is it that it can assist doctors with it’s predictive ability of illnesses and diseases which leaves the doctors to have more quality time with their patients.
HIMSS proposes new interoperability definition
The Healthcare Information and Management Systems Society has proposed a new definition for interoperability. It’s first update to the terminology since 2013. The proposed definition describes interoperability as the ability of different information systems, devices and applications to connect within and across organizations. The goal, according to HIMSS, is to enable organizations to exchange and collaboratively use data to optimize the health of individuals and populations.
Michigan Still Feeling the Pain of Recent Ransomware Attack
Close to a million Michiganders are finding that their healthcare information may not be as secure as they thought it was, according to Michigan’s Attorney General Dana Nessel. Unfortunately, the personal health and financial information of these individuals were part of a massive ransomware attack on a third-party subcontractor who prints and mails bills for healthcare organizations in the area. While the attack happened back in September 2018, the far-reaching repercussions are still being identified over six months after the breach occurred. These unlucky individuals are discovering that a vast array of information was impacted, including social security numbers, dates of birth, personal addresses, names, medical information, phone numbers and even information about their insurance contracts. It took nearly three weeks for the contractor, Wolverine Solutions Group, to regain access to their data after the ransomware attack.
Healthcare Organizations Are Often Targeted by Hackers
Due to the high volume of personal, financial and health information available, healthcare practices and associated organizations such as Wolverine Solutions Group are often the targets of cyberterrorists. The information that is stored within the vaults of these companies is extremely attractive, both for the data points and the perception that healthcare organizations will pay handsomely to regain access to their crucial healthcare data in the event of a ransomware attack. Ransomware costs American small businesses more than $75 billion per year according to Datto, a staggering sum when you consider that this downtime can result in costs upwards of $8,500 per hour. Ransomware is increasingly becoming a part of the technology landscape, as cybercriminals perceive it to be a relatively easy and untraceable payday due to the rise of anonymous digital currency such as bitcoin.
Was the Record Encryption Strong Enough?
One of the questions that cybersecurity professionals are attempting to answer is whether or not the encryption that was applied to the records was enough to protect the records from the cybercriminals. In the case of ransomware, Wolverine Solutions lost access to their data for a period of approximately three weeks. During that period, it’s still unclear whether the cybercriminals attempted to break the data encryption — and if they were ultimately successful, where that data might have been shared with others or sold on the dark web. While a security firm brought into investigate initially felt that the attack was strictly focused on gaining ransom money, that has yet to be independently corroborated.
Patient Notification and Next Steps
Patients who were potentially affected are being notified by Wolverine Solutions Group, an expensive and time-consuming process as it requires multiple contact methods and a great deal of support. The organization is also providing complimentary credit monitoring and identity protection services for the affected patients, an additional cost that must be considered a part of the loss. These services will all be provided for the period of a year, while patients worry and wait — wondering if their personal health and financial information is in the hands of cybercriminals somewhere in the world. While Wolverine Solutions Group technology leaders note that they are taking steps to ensure that this type of attack doesn’t happen again, this negative publicity has likely affected their business in ways that will continue to be seen for years to come.
While it’s nearly impossible to create a system that cannot be breached, this instance illustrates the importance of having proactive, advanced backup and data protection processes in place. Cybercrime is rampant throughout the world, and there are no businesses that are truly immune from the effects of a major attack. Wolverine Solutions Group is merely the latest in a string of healthcare organizations that suffered from this type of aggressive ransomware attack and join Hollywood Presbyterian Medical Center and other large healthcare organizations in the growing list of targets.
Celebrate World Backup Day on March 31st
When Was Your Last Backup?
Data backups are a critical part of protecting the information and files you cannot afford to lose. And yet, many people have bad backup habits – or no backup habits at all.
March 31st is World Backup Day – a perfect opportunity for you to update your existing backups, double-check that your backups are functional and retrievable, or create that backup you’ve been meaning to get around to.
Need help creating or maintaining your data backup system? Give {company} a call at {phone} or email us at {email} and talk to our technology experts today.
Bill Gates Reveals Top 5 Healthcare Technologies for 2019
After literally changing the world through technology, what does a retired billionaire Microsoft co-founder do for an encore? If his name is Bill Gates, he changes the world yet again. This time, Gates is exploring advanced cutting-edge technology to find healthcare solutions for the world’s most pressing issues. Serving as guest curator for the annual “10 Breakthrough Technologies” list published by MIT Technology Review, Gates revealed his top picks for 2019 – five of which happen to be healthcare technologies.
In introducing the list, Gates explains his choices and expresses optimism for how we can invent the future. “We’re still far from a world where everyone everywhere lives to old age in perfect health, and it’s going to take a lot of innovation to get us there,” he writes. “For now, though, the innovations driving change are a mix of things that extend life and things that make it better. My picks reflect both. Each one gives me a different reason to be optimistic for the future, and I hope they inspire you, too.”
Here are the top five healthcare technologies for 2019, as curated by philanthropist Bill Gates on his quest to change the world through innovative solutions.
1. Customized Cancer Vaccines
Things are getting personal in the world of cancer care and treatment. In a collaboration between German startup BioNTech and the biotech behemoth Genentech, researchers are conducting clinical trials with technology that customizes cancer vaccines for each individual. The approach attacks only cancerous cells rather than healthy ones using mRNA-based therapies, taking into account the patient’s genetic profile and specifics of the personal diagnosis.
2. Predicting and Preventing Premature Birth
Considering the millions of mothers giving birth to premature babies every year, Stanford University bioengineer Stephen Quake decided to do something about it. He has developed a genetic blood test that can identify which women are likely to deliver a premature baby, thereby increasing the likelihood of effective care and prevention. The test works by detecting fluctuations in specific genes related to premature births. Quake states that quick and easy test costs only about $10.
3. Ingestible Gut Probe for Easy Disease Screening
Harvard Medical School professor Guillermo Tearney, MD, PhD, who is also a pathologist at Massachusetts General Hospital, has created a swallowable gut probe that can capture images and screen for diseases such as environmental enteric dysfunction. The condition inhibits the absorption of nutrients, which adversely affects children in developing countries who are susceptible to malnourishment. According to the MIT Technology Review, the device has the potential to replace endoscopes and anesthesia, which can be cost-prohibitive for many people.
4. Wearable ECG Device for Everyday Use
Wearable devices such as the Series 4 Apple Watch are receiving advanced ECG technology that aims to equal heart monitoring done in a traditional physician’s office. The goal is to detect arrhythmia sooner and thereby reduce the potential for a heart attack.
5. Voice-enabled AI Assistants in Health Care
Artificial intelligence systems with voice-enabled technology, such as Alexa from Amazon and Siri by Apple, are being configured for HIPAA-compliant use in clinical patient care. Hospitals and clinics will be able to utilize the devices for things such as post-surgery care, checking blood pressure and increasing efficiency.
Happy St. Patrick’s Day This Sunday
March 17th is one of our favorite days of the year – St. Patrick’s Day. For some, it’s a day to celebrate centuries of rich culture and Irish heritage, and for others, an opportunity to have a pint or two with friends.
However you’ll be spending this St. Paddy’s, our team hopes you have a fun and safe 17th.
Health IT Briefing March 18-22
Implementation best practices: Getting healthcare analytics right
Four analytic experts offer important suggestions to CIOs on how to successfully implement data and analytics in their provider organizations. Some of the key tips they shared included that it’s imperative that the stockholders and key members collaborate to come up with clear visions and outcomes in order to reach their overall goals. Lastly, they suggested a change of management which would require an analysis of existing conditions so one can adjust accordingly to allow the best outcome to emerge. These tips are valuable to any provider since data and analytics have become increasingly critical to the success of any healthcare organization.
How “Smart Hospitals” Handle Mission-Critical IT: The Don’t Compete For Campus Resources
The adoption of automated healthcare systems has dramatically increased over the last decade. The transition from the “digital hospital” phase to the “smart hospital” phase, has brought a increase in the deployment of automated systems in hospitals. Since automation care management requires innovative patient care services and tools — such as electronic health records (EHR), automated care management, point-of-care technology linked to EHR, automated case documentation, and physician order entry linked to EHR — demand mission-critical primary and emergency power resources on a hospital campus. Which has resulted in trouble shooting problems associated with power outages. As a result, a greater demand on creating off-site data infrastructure facilitates and backup disaster recovery has become increasingly a priority.
As Artificial Intelligence Matures, Healthcare Eyes Data Aggregation
Artificial Intelligence has become a popular topic of conversation in the world of healthcare data analytics. Artificial Intelligence has rapidly started to support incredible advances in imaging analytics, clinical decision support, operational efficiencies, and patient engagement. Although there is so much advancement, the industry will have to resolve it’s data aggregation challenges first to gain the trust of the broadly on board health care stakeholders.