Hospitals Face Increased Risk of Data Breaches
|
By HospiMedica International staff writers Posted on 26 Apr 2017 |
|
A new study suggests that as health providers adopt health information technology, they increasingly suffer from data breaches.
Researchers at Michigan State University, Ball State University, and Johns Hopkins University conducted a retrospective data analysis of data breaches reported to the U.S. Department of Health and Human Services between October 2009 and December 2016. By law, U.S. hospitals covered by the Health Insurance Portability and Accountability Act (HIPPA), must notify the HHS of any breach affecting 500 or more individuals within 60 days of the discovery of the breach.
The results revealed that during the study period, healthcare providers reported 1,225 of the 1,798 recorded breaches, while business associates, health plans, and healthcare clearinghouses reported the remaining 573 data breaches. Of these, 257 breaches were reported by 216 hospitals; importantly, 33 hospitals experienced more than one breach, many of them large, major teaching hospitals, such as UC Davis Medical Center (CA, USA) and Henry Ford Hospital (Detroit, MI, USA). The study was published on April 3, 2017, in JAMA Internal Medicine.
“This research reinforces the critical trade-off patient’s face: healthcare systems having access to information they need, versus a hacker planning to spend your savings at Best Buy,” said lead author Xuefeng Jiang, PhD, of MSU, and colleagues. “While the law requires health care professionals and systems to cross-share patient data, the more people who can access data, the less secure it is.”
A data breach is defined as a security incident in which sensitive, protected, or confidential data is copied, transmitted, viewed, stolen or used by an individual unauthorized to do so. Data breaches may involve financial information such as credit card or bank details, personal health information, personally identifiable information, trade secrets of corporations, or intellectual property.
Researchers at Michigan State University, Ball State University, and Johns Hopkins University conducted a retrospective data analysis of data breaches reported to the U.S. Department of Health and Human Services between October 2009 and December 2016. By law, U.S. hospitals covered by the Health Insurance Portability and Accountability Act (HIPPA), must notify the HHS of any breach affecting 500 or more individuals within 60 days of the discovery of the breach.
The results revealed that during the study period, healthcare providers reported 1,225 of the 1,798 recorded breaches, while business associates, health plans, and healthcare clearinghouses reported the remaining 573 data breaches. Of these, 257 breaches were reported by 216 hospitals; importantly, 33 hospitals experienced more than one breach, many of them large, major teaching hospitals, such as UC Davis Medical Center (CA, USA) and Henry Ford Hospital (Detroit, MI, USA). The study was published on April 3, 2017, in JAMA Internal Medicine.
“This research reinforces the critical trade-off patient’s face: healthcare systems having access to information they need, versus a hacker planning to spend your savings at Best Buy,” said lead author Xuefeng Jiang, PhD, of MSU, and colleagues. “While the law requires health care professionals and systems to cross-share patient data, the more people who can access data, the less secure it is.”
A data breach is defined as a security incident in which sensitive, protected, or confidential data is copied, transmitted, viewed, stolen or used by an individual unauthorized to do so. Data breaches may involve financial information such as credit card or bank details, personal health information, personally identifiable information, trade secrets of corporations, or intellectual property.
Gold Member
SARS‑CoV‑2/Flu A/Flu B/RSV Sample-To-Answer Test
SARS‑CoV‑2/Flu A/Flu B/RSV Cartridge (CE-IVD)
Gold Member
STI Test
Vivalytic Sexually Transmitted Infection (STI) Array
New
Medical Examination & Procedure Light
Vega 80
New
POC Respiratory/Sore Throat Test
BIOFIRE SPOTFIRE (R/ST) Panel
Latest Health IT News
- EHR-Integrated Screening Workflow Detects Cognitive Impairment at Admission
- AI System Detects and Quantifies Chronic Subdural Hematoma
- Continuous Monitoring Platform Detects Infection Risk Across Care Transitions
- Automated System Classifies and Tracks Cardiogenic Shock Across Hospital Settings
- Voice-Driven AI System Enables Structured GI Procedure Documentation
- EMR-Based Tool Predicts Graft Failure After Kidney Transplant
- Printable Molecule-Selective Nanoparticles Enable Mass Production of Wearable Biosensors
- Smartwatches Could Detect Congestive Heart Failure
Channels
Artificial Intelligence
view channel
FDA-Cleared AI System Detects Sepsis Earlier and Reduces Mortality
Sepsis remains one of the deadliest complications for hospitalized patients, in part because its early signs overlap with other conditions. Each hour of delayed recognition measurably decreases survival,... Read more
Facial Image Analysis Tracks Biological Aging, Predicts Cancer Outcomes
Biological aging is the progressive loss of physiological function that may diverge from chronological age. In cancer care, clinicians need simple tools that reflect dynamic changes in patient resilience... Read more
Critical Care
view channel
AI Model Predicts 10-Year Stroke Risk from Standard ECG
Stroke remains a major cause of death and long-term disability worldwide. Clinicians need scalable tools to identify people who face sustained risk years before an event occurs. Existing clinical scores... Read more
Implantable Cytokine Device Enables Localized Immunotherapy for Ovarian Cancer
High-grade serous ovarian carcinoma, the most lethal form of ovarian cancer, often disseminates throughout the peritoneal cavity and resists standard therapies. Systemic interleukin-2 (IL-2) can activate... Read more
Surgical Techniques
view channel
Stretchable Bioelectronic Implant Lowers Blood Pressure in Preclinical Study
Hypertension, or high blood pressure, drives major cardiovascular morbidity and affects nearly half of adults in the United States. About one in ten patients develop drug‑resistant hypertension that persists... Read more
FDA-Cleared Nerve Stimulator Advances Intraoperative Peripheral Nerve Assessment
The Evala Nerve Stimulator from Epineuron (Mississauga, ON, Canada) is a handheld, intraoperative electrical stimulation system designed to provide surgeons with a rapid and accurate method for nerve identification... Read more
Patient Care
view channel
Wearable Sleep Data Predict Adherence to Pulmonary Rehabilitation
Chronic obstructive pulmonary disease (COPD) is a long-term lung disorder that makes breathing difficult and often disturbs sleep, reducing energy for daily activities. Limited engagement in pulmonary... Read more
Revolutionary Automatic IV-Line Flushing Device to Enhance Infusion Care
More than 80% of in-hospital patients receive intravenous (IV) therapy. Every dose of IV medicine delivered in a small volume (<250 mL) infusion bag should be followed by subsequent flushing to ensure... Read more
Point of Care
view channel
Point-of-Care Viscoelastic Testing System Supports Obstetric Bleeding Management
HemoSonics (Durham, NC, USA) announced on May 5, 2026 that the company's Quantra Hemostasis System for Obstetric Procedures won Silver in the 2026 Edison Awards in the Women’s Health and Reproductive Innovations... Read more
Business
view channel
Olympus Partnership Aims to Expand Access to Robot-Assisted Endoscopic Therapy
Olympus has signed an exclusive global distribution agreement with EndoRobotics Co., Ltd., under which robot-assisted technologies developed by EndoRobotics will be distributed worldwide as part of the... Read more
