VA lacked contractor cybersecurity oversight

Lack of cybersecurity controls at a Veterans Affairs Department contractor point to a lack of oversight by the office of the VA chief information officer, says a VA inspector general report according to FierceGovernmentIT. The report, dated July 27, examines the actions of an unnamed contractor providing the system permitting veterans to refill prescription orders via telephone, as well as to manage the scheduling of their appointments, check their balance due and receive lab results via a secure connection. The vendor has contracts worth $5.2 million during the current fiscal year and has contracted with the VA since 1992. Auditors received a hotline complaint earlier that month alleging that unauthorized contractor access had occurred at VA medical facilities in Columbia, Mo., Kansas City, Mo., Huntington, W. Va., and Wilmington, Del. --Read the full story at FierceGovernmentIT

Suggested Articles

An assessment looking at 12 health systems that allow patients to download their health records to their smartphones via APIs finds modest uptake.

The National Institutes of Health-led All of Us precision medicine health research database project has enrolled 230,000 participants.

Hospitals must pursue a deliberate strategy for managing their public image—and a powerful tool for doing so is inpatient clinical data registries.