Healthcare device data thefts focus of federal court case

A 12-count indictment against an engineer illustrates more needs to be done to protect and store healthcare data. Wenfeng Lu is accused to stealing data related to development of medical devices for cardiac and vascular treatment, according to a HealthcareInfoSecurity.com report.

"Many companies do not pay enough attention to how they monitor employee data issues and generally do not pay enough attention to addressing these kinds of insider risks," privacy attorney Kirk Nahra, of Wiley Rein, told HealthcareInfoSecurity.com.

The government believes Lu took the data from two different medical device companies at which he worked--ev3/Covidien and Edwards Lifesciences Corp. While court documents detail security efforts at the companies--from access limitations and to confidentiality agreements--Lu managed to conduct illicit data downloads. He also photographed gear.

"Healthcare organizations should consider whether to include all forms of confidential information, not just electronic protected health information, in an enterprisewide information security risk assessment that identifies both insider and outside threats," privacy attorney Adam Greene of the law firm Davis Wright Tremaine, told HealthcareInfoSecurity.com. Article

Suggested Articles

The newly launched Center for Connected Health will be largest telehealth hub in the Philadelphia region, according to Penn Medicine.

The FDA commissioner wants to use additional funding under Trump's budget to advance digital health initiatives and integrate real-world data.

The FDA's approval of an app that uses AI to notify specialists of a potential stroke offers new possibilities for triage software that uses CDS.