Premera Blue Cross Cyber Attack

Introduction Privacy of health information has become an area of emphasis across the healthcare industry. It is important to understand what data is protected under federal regulations, how it can be shared, and how to prevent any accidental exposure of protected data. It is possible that data that should be protected can be exposed without anyone even realizing a violation has occurred. Exposure of protected healthcare data can result in medical identity theft and is therefore a very important and hot topic. The security and privacy of healthcare data is necessary to ensure consumer confidence in the healthcare industry and to prevent medical identity theft.

Authority and Role of the Risk Manager Although the discussion focuses on the risk manager, most large health care organizations employ a team of individuals to reduce the risks of loss and increase patient safety from both a proactive and reactive stance. The health care environment is constantly evolving, but nothing has made change as pervasive as the Patient Protection and Affordable Care Act (PPACA) and the regulatory and compliance mandates contained within its wording. For instance, maintaining confidentiality of patient information, a key function of risk management, is now more difficult with the rise of cybercrime of medical information. According to Finkle (2014), the Federal Bureau of Investigation warns health care providers there is high demand for medical information by criminals to commit both impersonation crimes and financial fraud. These concerns were unheard of not long ago. Confidentiality and protection of patient information is only

Don't Be a Victim of a Health Care Security Breach Don't Be a Victim of a Health Care Security Breach Hospital and health facility administrators face hardened criminals who hack medical records with ever-increasing sophistication. Hackers gain access to critical information, such as medical claims, financial data, Social Security numbers and credit

TaSharon L. Collins HCI/510 Systems Life Cycle September 22, 2014 Professor Eric Everard  Data security is used to prevent anything that is unauthorized, and it helps to protect all of the data from any corruption. Almost daily, media reports highlight the failure of health care organizations to safeguard the privacy and

In August 2000, Kaiser Permanente Online experienced a serious breach in security. The security breach concatenated several hundred individual e-mails containing personal patient data. As a result of the security breach, 19 members receiving private data about other members. Kaiser Permanente was made aware of the breach when two members notified the organization that they had received the concatenated e-mail messages.

Ortho Montana is a healthcare provider which deals with the prevention, assessment, treatment and rehabilitation of musculoskeletal injuries. Breach Description related to Ortho Montana: On February, 8, 2011, Ortho Montana, PSC, a healthcare provider submitted a data breach which affected thirty seven thousand people. The type of breach described was ‘Theft’ and

4 Misconceptions regarding HIPAA compliance and the cloud As health professionals, it’s essential to take every precaution to protect sensitive patient information including personal contact information and medical history. Patient data is regulated by the government and provides privacy and security provisions for safeguarding medical information. The law that regulates these processes, the Health Insurance Portability and Accountability Act (HIPAA), has become a prominent point of public discussion over recent years due to an onslaught of security concerns and cyberattacks on health providers and insurers.

Anthem is a medical insurance provider that currently serves over 74 million people. On December 10, 2014, Anthem was victim to a data breach that resulted in over 37 million personal records being hacked from their servers. Fortunately, the attack was contained to only one day, but it was still enough to become one of the largest data breaches in corporate history. Shockingly, the hack wasn’t actually discovered until January 27, 2015. What lead to the discovery was when a data administrator discovered a query that was started using his own credentials (Ragan). Just over a week later - on February 4th - Anthem announced that there had been a massive data breach to the public. The breach was so severe, that even Anthem’s own CEO, Joseph Swedish, said that his personal information along with several other Anthem associates were taken during the breach.

Bon Secours Mary Immaculate Hospital This case study will examine how Bon Secours Mary Immaculate Hospital identified a security breach in their facility and the course of action taken in an attempt to eradicate the problem. Security breaches are a major subject that must be addressed in the healthcare facility.

Introduction: The Target data breach remains one of the most notable breaches in history, it was the first time a CEO of a major corporation was fired due to a security event. The breach received an enormous amount of attention, it caused corporations and individuals to change the way they think about information security and data protection. Between Thanksgiving and Christmas 2013 hackers gained access to 40 million customer credit cards and personal data of 70 million Target customers. The intruders slipped in by using stolen credentials and from there gained access to vulnerable servers on Targets network to launch their attack and steal sensitive customer data from the POS cash registers. All this occurred without a response from Targets security operations center, even though security systems notified them of suspicious activity. The data was then sold on the black market for an estimated $53 million dollars. However, the cost to Target, creditors, and banks exceeded half of a billion dollars. This report will review how the infiltration occurred, what allowed the breach to occur including Targets response, and finally who was impacted by the security event.

Final Assignment Alleged improper admission orders resulting in morphine overdose and death Eghosa Idumwonyi Davenport University HCMG730 June 18, 2015 Introduction The department of Health and Human Services protects and guides the health and well being of individuals here in America (Thacker, 2014). They fulfill these duties providing Americans with adequate and efficient health and human services

The electronic medical record systems are “increasingly attracting concerns about computer errors, design flaws and breakdowns in communication” which can endanger patients (Freudenheim, 2010). In February 2011, the FDA received reports of malfunctions related to information technology, patient injuries, and deaths in 2008 and 2009 (Freudenheim, 2010). The cost to initiate the electronic program is high. This makes it difficult for individual healthcare providers to afford during our present economic condition. Finally, privacy is a significant concern, as today we hear so much about identity theft, computer hackers, in addition to the underserved who have concerns about their residency status and the fear of deportation (Horan, Botts & Burkhard, 2010).

With the ability to store our medical records electronically, there will always be the risk and exposure of some our most personal information to hackers and thieves. There have been numerous reports lately of groups such as “Anonymous” breaking into the CIA, shutting down the FBI’s websites and even breaking into state databases for profit and gain.

Information Security in the Healthcare Industry The rapid changes in technology over the past few decades has left the healthcare industry ill-prepared to operate in today’s environment. Most substantial protections of sensitive consumer information has come as a result of federal regulation, most notably in 1996

A big concern in society and the healthcare industry, which is just as likely to be a victim as any other industry, is the growing number of attacks caused by cybercrime. Healthcare costs rise because of cyberattacks and there is an increase of safety concerns for patients, not to mention the Health Insurance Probability and Accountability Act (HIPAA) is violated. The effects of cybercrime can be damaging to all aspects of the healthcare industry, including but not limited to, consumers, healthcare providers, payers and pharmaceutical companies. The purpose of this research paper is to state facts about cybercrime and the effects it has on the healthcare industry, what actions can be taken for prevention, as well as my opinion on the issue.