The websites of EHR software providers Athenahealth and Allscripts were down for some parts of the country Friday during the same time hackers launched an attack against the servers of Dyn, a major Domain Name System host.
A file-sharing application on a server had a default setting that allowed Google, other search engines and “anyone with an internet connection" access to them, according to a statement from the Office for Civil Rights at HHS.
Medical-device manufacturer St. Jude Medical has announced it will form an advisory board to address cybersecurity concerns following claims from short-sellers that its pacemakers and other devices are vulnerable to hacks.
About 87% of health law attorneys think their clients are at a greater risk of cybersecurity attacks than other industries, according to a survey released Thursday by the American Health Lawyers Association, a nonpartisan organization with 13,500 members.
U.S. Surgeon General Dr. Vivek Murthy sent an email last week to members of the U.S. Public Health Service Commissioned Corps warning them that unauthenticated visitors to a computer site could have accessed their names, dates of birth and Social Security numbers. Investigators are still trying to...
HHS is investigating a possible breach of a computer system holding personal information of more than 6,700 doctors, nurses and other uniformed public health workers overseen by the surgeon general.
Four-hospital Care New England Health System, based in Providence, R.I., has agreed to pay $400,000 and write a corrective action plan after a federal investigation found it lacked an up-to-date business associate's agreement between it and one of its hospitals.
The GAO has released what's being called a "scathing" report on cybersecurity readiness and threats in health IT. The agency says HHS' investigations often result in technical advice that is not pertinent and that the agency doesn't always follow up to ensure corrective actions have been taken.
Federal authorities are investigating after electronic services were infected with a computer virus at the Appalachian Regional Healthcare system in Kentucky and West Virginia.
Hackers have captured the attention of the healthcare security community, according to a new survey report, but the industry's data guardians feel hampered by a lack of manpower and money. A significant minority still report their systems are not encrypting patient data.
The Health Insurance Portability and Accountability Act—the law the federal government uses to police the privacy and security of the nation's health information—is turning 20, and some people may wonder if it's up to the job in 2016 and beyond.
Last week's tweet of medical records hacked from an Ohio medical group is raising questions about social media's role in protecting patients' privacy. The post remained on Twitter for at least 16 hours.