3 tips for defending patient information from hacker attacks

Stethoscope on computer keyboard

Physicians typically have access to sensitive personal information on large numbers of patients, which makes their devices prime targets for hackers looking to steal that information, writes Paul Cerrato in Medscape.

News that a hacker acquired personal information on nearly 10 million patients and put it up for sale online indicates a worrisome shift from ransomware attacks on hospitals targeting access to personal information, as our sister publication, FierceHealthIT, recently reported. Doctors with lax information security practices expose themselves to Health Insurance Portability and Accountability Act violations and large fines, in addition to putting their patients’ information at risk, Cerrato says.

Doctors can protect sensitive patient information, as well as their own reputations, by sticking to some common-sense guidelines.

Product Spotlight

Top-Rated Mobile App for Health Insurance Members

Zipari’s Mobile App is the smarter, easier, and better way for payers to engage members on the go and directly in the palm of their hands. Members can find the right doctors, receive notifications, send messages, view claims, track spending, talk to a nurse, download ID card, and more. It’s ready to install and launch in a few months.
  • Encrypt laptops and other devices so that the information on them will be unintelligible to anybody who steals them. Without an encryption key, data on an encrypted device will be “gibberish,” according to Cerrato. He recommends looking for built-in encryption programs available on most modern operating systems if you don’t have the budget to spring for an enterprise-grade solution.
  • Don’t let convenience trump good security. No amount of encryption will keep a hacker out of your files if you use weak or easy-to-guess passwords, says Cerrato. It’s also important to keep anti-virus programs up to date so that they catch the latest threats, he says, and to install system updates regularly to ensure your operating system is protected from known exploits.
  • Practice safe surfing. Cerrato emphasizes the importance of understanding and recognizing phishing scams, where hackers send emails with links or attachments that trick users into giving them access to their information, either by providing their credentials to a bogus web site or by executing malicious software on their machine. Since these can spread easily among coworkers, Cerrato recommends professional security training to get all staff members up to speed on this threat.

- here’s the article

Suggested Articles

A new study found that more than half of doctors don't believe drug-resistant superbugs are a major concern for their practice.

Blue Shield of California is teaming up with Cricket Health to offer coordinated care to members with late-stage and end-stage renal disease.

Congress should pass another $50 billion in provider relief funding and spur more participation in alternative payment models, advocates say.