Hospitals Face Increased Risk of Data Breaches
|
By HospiMedica International staff writers Posted on 26 Apr 2017 |
|
A new study suggests that as health providers adopt health information technology, they increasingly suffer from data breaches.
Researchers at Michigan State University, Ball State University, and Johns Hopkins University conducted a retrospective data analysis of data breaches reported to the U.S. Department of Health and Human Services between October 2009 and December 2016. By law, U.S. hospitals covered by the Health Insurance Portability and Accountability Act (HIPPA), must notify the HHS of any breach affecting 500 or more individuals within 60 days of the discovery of the breach.
The results revealed that during the study period, healthcare providers reported 1,225 of the 1,798 recorded breaches, while business associates, health plans, and healthcare clearinghouses reported the remaining 573 data breaches. Of these, 257 breaches were reported by 216 hospitals; importantly, 33 hospitals experienced more than one breach, many of them large, major teaching hospitals, such as UC Davis Medical Center (CA, USA) and Henry Ford Hospital (Detroit, MI, USA). The study was published on April 3, 2017, in JAMA Internal Medicine.
“This research reinforces the critical trade-off patient’s face: healthcare systems having access to information they need, versus a hacker planning to spend your savings at Best Buy,” said lead author Xuefeng Jiang, PhD, of MSU, and colleagues. “While the law requires health care professionals and systems to cross-share patient data, the more people who can access data, the less secure it is.”
A data breach is defined as a security incident in which sensitive, protected, or confidential data is copied, transmitted, viewed, stolen or used by an individual unauthorized to do so. Data breaches may involve financial information such as credit card or bank details, personal health information, personally identifiable information, trade secrets of corporations, or intellectual property.
Researchers at Michigan State University, Ball State University, and Johns Hopkins University conducted a retrospective data analysis of data breaches reported to the U.S. Department of Health and Human Services between October 2009 and December 2016. By law, U.S. hospitals covered by the Health Insurance Portability and Accountability Act (HIPPA), must notify the HHS of any breach affecting 500 or more individuals within 60 days of the discovery of the breach.
The results revealed that during the study period, healthcare providers reported 1,225 of the 1,798 recorded breaches, while business associates, health plans, and healthcare clearinghouses reported the remaining 573 data breaches. Of these, 257 breaches were reported by 216 hospitals; importantly, 33 hospitals experienced more than one breach, many of them large, major teaching hospitals, such as UC Davis Medical Center (CA, USA) and Henry Ford Hospital (Detroit, MI, USA). The study was published on April 3, 2017, in JAMA Internal Medicine.
“This research reinforces the critical trade-off patient’s face: healthcare systems having access to information they need, versus a hacker planning to spend your savings at Best Buy,” said lead author Xuefeng Jiang, PhD, of MSU, and colleagues. “While the law requires health care professionals and systems to cross-share patient data, the more people who can access data, the less secure it is.”
A data breach is defined as a security incident in which sensitive, protected, or confidential data is copied, transmitted, viewed, stolen or used by an individual unauthorized to do so. Data breaches may involve financial information such as credit card or bank details, personal health information, personally identifiable information, trade secrets of corporations, or intellectual property.
Gold Member
SARS‑CoV‑2/Flu A/Flu B/RSV Sample-To-Answer Test
SARS‑CoV‑2/Flu A/Flu B/RSV Cartridge (CE-IVD)
New
Gold Member
Handheld Blood Glucose Analyzer
STAT-Site
New
Medical Examination & Procedure Light
Vega 80
New
Surgical System
Stealth AXiS
Latest Health IT News
- AI System Detects and Quantifies Chronic Subdural Hematoma
- Continuous Monitoring Platform Detects Infection Risk Across Care Transitions
- Automated System Classifies and Tracks Cardiogenic Shock Across Hospital Settings
- Voice-Driven AI System Enables Structured GI Procedure Documentation
- EMR-Based Tool Predicts Graft Failure After Kidney Transplant
- Printable Molecule-Selective Nanoparticles Enable Mass Production of Wearable Biosensors
- Smartwatches Could Detect Congestive Heart Failure
- Versatile Smart Patch Combines Health Monitoring and Drug Delivery
Channels
Artificial Intelligence
view channel
AI Model Uses Eye Imaging to Identify Risk of Major Systemic Diseases
Early detection of systemic disease risk remains a persistent challenge in population health screening. Cardiometabolic conditions such as diabetes, heart disease, and stroke often progress without symptoms... Read more
AI Platform Interprets Real-Time Wearable Data for Parkinson’s Management
Parkinson’s disease presents fluctuating motor and non-motor symptoms that complicate day-to-day self-management and clinical decision-making. Care teams require timely, longitudinal insight into medication... Read more
Critical Care
view channel
Graphene-Based Material Selectively Eliminates Bacteria While Sparing Human Cells
Drug-resistant bacterial infections continue to complicate wound management and device-associated care, where persistent contamination raises morbidity and costs. Safer, fabric‑integrated antimicrobials... Read more
Dried Platelet Biologic Reduces Hemorrhage After Traumatic Brain Injury
Traumatic brain injury (TBI) triggers immediate intracranial bleeding and days-later cerebral edema that can rapidly worsen neurological injury. Effective drug options to curb these processes are limited,... Read more
Wearable Cardiac Monitor with Cellular Transmission Enhances Remote Arrhythmia Detection
Remote cardiac monitoring requires comfort, wearability, and adherence to gather electrocardiogram data for clinical review. Mailing devices back for data processing can delay review. Faster insights,... Read more
Surgical Techniques
view channel
Torqueable Microcatheters Enhance Navigation in Complex Coronary Lesions
Interventional cardiologists frequently encounter tortuous vessels and heavily calcified or fibrotic coronary lesions that complicate guidewire control and device delivery. Stable, predictable torque and... Read more
Transcatheter Venous Arterialization Improves Outcomes in No-Option Limb Ischemia Patients
Chronic limb-threatening ischemia (CLTI) is an advanced stage of peripheral artery disease in which plaque narrows leg arteries and severely restricts blood flow, leading to pain, nonhealing wounds, and... Read more
Patient Care
view channel
Wearable Sleep Data Predict Adherence to Pulmonary Rehabilitation
Chronic obstructive pulmonary disease (COPD) is a long-term lung disorder that makes breathing difficult and often disturbs sleep, reducing energy for daily activities. Limited engagement in pulmonary... Read more
Revolutionary Automatic IV-Line Flushing Device to Enhance Infusion Care
More than 80% of in-hospital patients receive intravenous (IV) therapy. Every dose of IV medicine delivered in a small volume (<250 mL) infusion bag should be followed by subsequent flushing to ensure... Read more
Point of Care
view channel
Business
view channel
Johnson & Johnson Launches AI-Driven Cardiac Mapping System
Johnson & Johnson has introduced the CARTOSOUND SONATA Module for the CARTO System at the Heart Rhythm Society (HRS) 2026 meeting in Chicago. The module uses artificial intelligence with the CARTO... Read more
