Hospitals Face Increased Risk of Data Breaches
|
By HospiMedica International staff writers Posted on 26 Apr 2017 |
|
A new study suggests that as health providers adopt health information technology, they increasingly suffer from data breaches.
Researchers at Michigan State University, Ball State University, and Johns Hopkins University conducted a retrospective data analysis of data breaches reported to the U.S. Department of Health and Human Services between October 2009 and December 2016. By law, U.S. hospitals covered by the Health Insurance Portability and Accountability Act (HIPPA), must notify the HHS of any breach affecting 500 or more individuals within 60 days of the discovery of the breach.
The results revealed that during the study period, healthcare providers reported 1,225 of the 1,798 recorded breaches, while business associates, health plans, and healthcare clearinghouses reported the remaining 573 data breaches. Of these, 257 breaches were reported by 216 hospitals; importantly, 33 hospitals experienced more than one breach, many of them large, major teaching hospitals, such as UC Davis Medical Center (CA, USA) and Henry Ford Hospital (Detroit, MI, USA). The study was published on April 3, 2017, in JAMA Internal Medicine.
“This research reinforces the critical trade-off patient’s face: healthcare systems having access to information they need, versus a hacker planning to spend your savings at Best Buy,” said lead author Xuefeng Jiang, PhD, of MSU, and colleagues. “While the law requires health care professionals and systems to cross-share patient data, the more people who can access data, the less secure it is.”
A data breach is defined as a security incident in which sensitive, protected, or confidential data is copied, transmitted, viewed, stolen or used by an individual unauthorized to do so. Data breaches may involve financial information such as credit card or bank details, personal health information, personally identifiable information, trade secrets of corporations, or intellectual property.
Researchers at Michigan State University, Ball State University, and Johns Hopkins University conducted a retrospective data analysis of data breaches reported to the U.S. Department of Health and Human Services between October 2009 and December 2016. By law, U.S. hospitals covered by the Health Insurance Portability and Accountability Act (HIPPA), must notify the HHS of any breach affecting 500 or more individuals within 60 days of the discovery of the breach.
The results revealed that during the study period, healthcare providers reported 1,225 of the 1,798 recorded breaches, while business associates, health plans, and healthcare clearinghouses reported the remaining 573 data breaches. Of these, 257 breaches were reported by 216 hospitals; importantly, 33 hospitals experienced more than one breach, many of them large, major teaching hospitals, such as UC Davis Medical Center (CA, USA) and Henry Ford Hospital (Detroit, MI, USA). The study was published on April 3, 2017, in JAMA Internal Medicine.
“This research reinforces the critical trade-off patient’s face: healthcare systems having access to information they need, versus a hacker planning to spend your savings at Best Buy,” said lead author Xuefeng Jiang, PhD, of MSU, and colleagues. “While the law requires health care professionals and systems to cross-share patient data, the more people who can access data, the less secure it is.”
A data breach is defined as a security incident in which sensitive, protected, or confidential data is copied, transmitted, viewed, stolen or used by an individual unauthorized to do so. Data breaches may involve financial information such as credit card or bank details, personal health information, personally identifiable information, trade secrets of corporations, or intellectual property.
Gold Member
STI Test
Vivalytic Sexually Transmitted Infection (STI) Array
Adjustable Mobile Barrier
M-458
Pressure Guidewire
SavvyWire
Channels
Artificial Intelligence
view channel
Critical Care
view channel
Machine-Learning Model Predicts Preeclampsia in Late Pregnancy
Preeclampsia is a serious pregnancy complication marked by the sudden onset of high blood pressure before delivery. Affecting approximately 2% to 8% of pregnancies worldwide, the condition can lead to... Read more
Single Heart Attack Shot to Revolutionize Cardiac Care
Surviving a heart attack often marks the beginning of a long recovery period, during which the heart can remain vulnerable to damage and long-term weakening. Current treatments focus on stabilizing patients... Read more
Single Mid-Wave Infrared Thermal Camera Enables Noncontact Vital Signs Monitoring
Infrared thermal cameras are widely used to measure surface temperatures and have become common tools for fever screening during infectious disease outbreaks. However, body temperature alone often provides... Read more
Surgical Techniques
view channel
Surgical Robot Makes Complex Liver Tumor Surgery Safer and Less Invasive
Tumors located in the caudate lobe of the liver present a major surgical challenge. This deep section of the liver sits close to critical blood vessels, making traditional surgical access difficult and... Read more
Fluorescence Probe Paired with Engineered Enzymes Lights Up Tumors for Easier Surgical Removal
Successful cancer surgery relies on a surgeon’s ability to remove tumors while preserving as much healthy tissue as possible. To assist with this, surgeons often use fluorescent dyes that cause cancer... Read more
Patient Care
view channel
Revolutionary Automatic IV-Line Flushing Device to Enhance Infusion Care
More than 80% of in-hospital patients receive intravenous (IV) therapy. Every dose of IV medicine delivered in a small volume (<250 mL) infusion bag should be followed by subsequent flushing to ensure... Read more
VR Training Tool Combats Contamination of Portable Medical Equipment
Healthcare-associated infections (HAIs) impact one in every 31 patients, cause nearly 100,000 deaths each year, and cost USD 28.4 billion in direct medical expenses. Notably, up to 75% of these infections... Read more
Portable Biosensor Platform to Reduce Hospital-Acquired Infections
Approximately 4 million patients in the European Union acquire healthcare-associated infections (HAIs) or nosocomial infections each year, with around 37,000 deaths directly resulting from these infections,... Read more
First-Of-Its-Kind Portable Germicidal Light Technology Disinfects High-Touch Clinical Surfaces in Seconds
Reducing healthcare-acquired infections (HAIs) remains a pressing issue within global healthcare systems. In the United States alone, 1.7 million patients contract HAIs annually, leading to approximately... Read more
Business
view channel
Medtronic to Acquire Coronary Artery Medtech Company CathWorks
Medtronic plc (Galway, Ireland) has announced that it will exercise its option to acquire CathWorks (Kfar Saba, Israel), a privately held medical device company, which aims to transform how coronary artery... Read more
Medtronic and Mindray Expand Strategic Partnership to Ambulatory Surgery Centers in the U.S.
Mindray North America and Medtronic have expanded their strategic partnership to bring integrated patient monitoring solutions to ambulatory surgery centers across the United States. The collaboration... Read more
FDA Clearance Expands Robotic Options for Minimally Invasive Heart Surgery
Cardiovascular disease remains the world’s leading cause of death, with nearly 18 million fatalities each year, and more than two million patients undergo open-heart surgery annually, most involving sternotomy.... Read more