California regulators are looking for ways to enhance oversight of medical records and healthcare data security in light of a growing problem they’re calling "medical identity theft."
Cybersecurity
Hacking: Password risk affects some 300 medical devices, says Homeland Security
The Dept. of Homeland Security warned last month that some 300 medical devices may be vulnerable to malicious hacking thanks to manufacturers’ hard-coded default passwords. Devices at risk include external defibrillators, infusion pumps, lab and analysis equipment, ventilators and more.
Hacking: Penetration tests reveal that even blunt tools can crack medical devices
A recent analysis of medical device cybersecurity tests shows that these devices are vulnerable to fairly straightforward hacking techniques, an increasingly serious concern as device security is directly tied to patient health and safety.
Anti-virus for medtech: FDA asks for more cybersecurity docs on new medical devices
The FDA is ready to take a closer look at medical device cyber-safety, asking companies to provide details on anti-virus protection and other elements of digital security for new healthcare technologies. In light of a growing concern over incidents in which compromised security has exposed or disabled medical devices, the agency hopes to "reduce the risk of failure due to cyber-attack."
Healthcare hacking makes breach insurance a hot market | MassDevice.com On Call
MASSDEVICE ON CALL — News reports are awash with data breaches at healthcare organizations, with California’s Sonoma Valley Hospital and the University of Florida in Gainesville among those reporting leaks just this week.
All the coverage and the penalties and settlements that sometimes results have heightened interest in breach insurance, or "cyber liability insurance," providers say.
Veterans sue over medical record data breach | MassDevice.com On Call
MASSDEVICE ON CALL — A duo of U.S. veterans filed a lawsuit against the Veterans Administration this month after a South Carolina medical center reported a missing laptop with records on more than 7,000 patients.
Earlier this year the William Jennings Bryan Dorn VA Medical Center in Colombia reported a laptop missing from a testing lap in the center’s respiratory therapy department, warning that the theft may have exposed patients’ names, birth dates, and the last 4 digits of their social security numbers, among other information.
Are medical device makers beginning to think about cybersecurity? | MassDevice.com On Call
MASSDEVICE ON CALL — The medical device industry is far from prepared to defend its technology from potential cybersecurity threats, but some device makers may be starting to look at the issue.
Long-time medtech cybersecurity researcher Kevin Fu says that he’s "starting to see some glimmers of hope" that the industry is developing security standards.
Survey: 8% of healthcare groups say they’ve been hacked in the last year
In a recently released survey of 200 healthcare chief information officers, health information technology directors and other leaders, 8% said their data had been hacked in the last year, representing a small but notable threat to patient and hospital data security.
Robot-assisted surgery lawsuits to begin this week | MassDevice.com On Call
MASSDEVICE ON CALL — The 1st in a series of lawsuits against Intuitive Surgical’s (NSDQ:ISRG) is set to begin this week in Washington, with a state court prepared to hear opening arguments accusing the company of failing to provide sufficient training to surgeons using the device.
Colorado doc accused of misconduct with da Vinci surgical robot | MassDevice.com On Call
MASSDEVICE ON CALL — Colorado surgeon Dr. Warren Kortz was accused of 14 counts of misconduct after a group of patients of unprofessional conduct, some regarding procedures performed with the da Vinci robot-assisted surgical system.
The complaints against Kort, filed by 11 patients, included allegations that the doctor inappropriately told patients that robot-assisted surgery was the best option for performing kidney transplants.
CardioReady cautions FDA on new review for public defibrillators | MassDevice.com On Call
MASSDEVICE ON CALL — The FDA this month issued a new proposal on the regulatory oversight of automated external defibrillators, but at least 1 medical device maker is worried that enhanced oversight may harm public safety.
Philadelphia-based CardioReady, maker of AED systems, urged that the FDA ensure that any new oversight not jeopardize the proliferation of AEDs, in the interest of public health.