In this podcast, David Finn shares why technical vulnerabilities and risk to medical devices are so important and the risks we aim to address from the core business of healthcare to security for the sake of security. The No. 1 focus we have in healthcare technology is patient safety and he discusses what makes biomedical device security so much more difficult than securing traditional end-points, why this even an IT security issue and how to engage clinical engineering and administrators in addressing the issue. David shares what providers can do now to secure and manage biomedical devices on their network.
Most Recent Articles
Caleb Barlow explores how new attack surfaces and vulnerabilities for healthcare organizations have emerged amid the increased access to sensitive data for key functions.
CynergisTek's Emily Dillon discusses how federal regulators have issued another round of security alerts regarding vulnerabilities in medical device products from several manufacturers.
Marti Arvin, Executive Advisor at CynergisTek, offered commentary for this article, which discusses the recent HIPAA fine on Agape Health Services, a N.C.-based federally qualified health center.
Marti Arvin discusses California’s newly enforced controversial digital privacy law – despite a call for a delay due to the pandemic and a lack of readiness by many companies.
Marti Arvin offers commentary which details this massive case in which federal prosecutors say the crime has racked up $480 million in fake Medicare and Medicaid billing.
David Finn discusses the risks faced by interconnected organizations in the healthcare sector and how the number of people affected by the April ransomware attack on Magellan Health continues to grow.
David Holtzman discusses the preliminary settlement of a class action data breach lawsuit against Iowa Health System (a.k.a UnityPoint Health).
Why are some breach notifications delayed for months? David Bailey discusses the statement made by Choice Health Management Services which issued a step-by-step explanation on breach notifications.
In this recent Business Insider article, they discuss the future of medical appointments being remote and how hospitals are making the transition and dodging new cyber threats.
David Finn discusses two recent health data breaches that illustrate persistent security challenges – defending against ransomware attacks as well as unauthorized access to email.
What will happen after July 25th? The Federal government's recent policy changes for facilitating patient care during COVID-19 may have an impact on telehealth restrictions in the future.
In the latest article by Healthcareinfosecurity.com David Holtzman discusses the major health data breaches that have been added to the federal tally in recent weeks.
Cyberwire’s latest podcast features Caleb Barlow as he discusses the challenges of securing medical records.
Cyberwire’s latest podcast features Caleb Barlow as he discusses his responsibilities during an incident from the SOC operator to the CEO.
In the latest article by Healthcareinfosecurity.com David Holtzman discusses the class action lawsuit filed against accounting firm BST & Co. CPAs LLC that allegedly exposed patient information.
Cyberwire’s latest podcast features Caleb Barlow as he discusses how hospital CISOs are dealing with the COVID-19 situation.
A software error that briefly allowed individuals to access other patients' telehealth appointment recordings serves as a reminder of potential security.
UCSF released a report that shows that academic healthcare systems and healthcare sector entities both have been favorite targets of hackers during the COVID-19 pandemic.
Healthcare providers, insurers, and business associates reported 16 data breaches to the federal government in May, the lowest number of data breaches reported in a single month in more than 4 years.
Marti Arvin joins The Compliance and Ethics Blog podcast with guests as they discuss questions around the coronavirus pandemic about what is and isn’t permissible.