Privacy & Security

Hacker at dark keyboard.
Healthcare cyberattacks are costing an average of $11M per breach
By Nathan Eddy | 09:41 am | June 24, 2024
Ransomware attacks have dominated, accounting for over 70% of healthcare cyberattacks in the past two years.
Person using their cell phone
AHA wins lawsuit against HHS over third-party web tracking
By Susan Morse | 11:07 am | June 21, 2024
The case isn't about HIPAA, but about power, Texas judge rules.
Clinician on computer
Ascension restores its EHR system hospital-wide
By Susan Morse | 03:34 pm | June 14, 2024
System access was gained via a worker who accidentally downloaded a malicious file, according to the health system. 
electronic grid overlaid on cityscape
Ascension expects EHR restoration across its network by June 14
By Susan Morse | 11:31 am | June 05, 2024
EHR access has been restored in Florida, Alabama and Austin, Texas.
Tom Liddell at Harmony Healthcare IT_Palm trees and skyscrapers in Orlando Photo by Gabriele Maltinti/iStock/Getty Images Plus
HIMSS24
Moving data without losing the story within it
By HIMSS TV | 06:00 am | May 31, 2024
Scott Stuewe at DirectTrust_Palm trees and skyscrapers in Orlando Photo by Gabriele Maltinti/iStock/Getty Images Plus
HIMSS24
DirectTrust works with health information service providers
By HIMSS TV | 06:00 am | May 29, 2024
Harried nurse
Over 100 medical organizations want clarity in Change cyberattack
By Susan Morse | 11:23 am | May 21, 2024
AMA and others want HHS to affirm that UnitedHealth Group alone bears responsibility for notifying patients of potentially stolen PHI.
Person at computer in the dark
Ascension faces class action lawsuits for Black Basta ransomware attack
By Susan Morse | 10:48 am | May 17, 2024
The cyberattack that brought down the Ascension IT Systems was "foreseeable and preventable," complaints say.
Modern hospital building
Ascension confirms cyberattack is ransomware
By Susan Morse | 11:27 am | May 14, 2024
No further information has been given on the ransomware amount or whether PHI has been compromised.
Carolyn Metnick at Sheppard Mullin_ Security padlock over circuit board Photo by Yuichiro Chino/Moment/Getty Images
Cybersecurity risk can be mitigated by HIPAA security rule compliance
By HIMSS TV | 06:00 am | May 13, 2024
<p>Phishing, compromised accounts through remote access and unpatched vulnerabilities are common attack vectors, says Carolyn Metnick, partner at Sheppard Mullin who is a member of their Healthcare and Privacy & Cybersecurity teams.</p>