Healthcare Cybersecurity – Where are You Vulnerable?

February 23, 2018

Compliance Services

Healthcare Information Technology

Experts warn that when it comes to cyber breaches, it is not a question of if, but when we will be hacked. Cybersecurity threats are real. Most practices don’t understand the complexities of the HIPAA Privacy/Security Rule. The punishment for failing to protect patient privacy is much worse for those who are unprepared. Healthcare cybercrime, a form of online terrorism that has victimized other industries over the past 20 years, threatens the very safety and well-being of our nation’s healthcare system. Daily, we read about security breaches in small, medium, and large healthcare organizations that often affect hundreds, thousands, or even millions of people and their private information.No hospital, physician, or other healthcare provider is immune to the operational chaos, harrowing events, and potential financial ruin that can result from sudden cybercrime attacks. Safety nets and additional safeguards are available to minimize these risks, but many providers do not know how vulnerable their IT systems and networks are until it is too late. Providers must take prudent steps to identify and address their IT security weaknesses to protect more thoroughly their invaluable data and financial assets from ransomware and other dangerous exposures now and in the future. Their viability depends on it.‍

Prevent Cyber Crime in Healthcare

‍Hackers seek easy targets. The first step in defending yourself is to reduce your vulnerabilities. One of the best ways to do this it to become more preemptive by conducting thorough and scheduled assessments of the organization’s IT environment, optimally at six-month (or at least annually) intervals. The major components to evaluate are an organization’s file, database, and other servers; other hardware including PCs and mobile devices, software, wired and wireless data networks; and internet connections. The assessment should encompass a complete, end-to-end vulnerability and threat identification for all application systems, users, and devices in all locations, both on and off of the organization’s network. Key findings must be documented, and action plans developed, implemented, and tracked to completion, with the process repeated at scheduled intervals.Vulnerability management is the cyclical practice of identifying, classifying, remediation, and mitigating vulnerabilities. Coker provides cybersecurity education and training and conducts in-depth, one-time, and ongoing IT security assessments for hospitals and other provider organizations.

Contributors

Jeffery Daigrepont

Senior Vice President

Share This Post

Get Updates

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.

Related Insights

View All Insights

Healthcare Cybersecurity – Where are You Vulnerable?

Related Insights

Trinity Hunt Partners Establishes Healthcare Advisory Platform with Investment in Coker

Is Your Risk Analysis Thorough and Accurate?

Lawmakers Grapple with Artificial Intelligence Regulation as Popularity and Utilization Grow

Is Your Telehealth Solution HIPAA Compliant?

CMS Issues 2023 Physician Fee Schedule Final Rule

The Office of Inspector General to Audit the Effectiveness of the Health and Human Services Office for Civil Rights

American Medical Association Releases 2023 E/M Updates

Major Changes to Split/Shared Billing Affect Advanced Practice Providers and Physicians

Don’t Write-Off Timely Filing Denials

5 Fatal IT Vendor Contract Mistakes

Key Elements of a Cyber Liability Insurance Policy for Healthcare Providers

Why is a Fair Market Value/Commercial Reasonableness Opinion Important for Value-Based Enterprises?

8 Information Blocking Exceptions You Need to Know

What is Compliance Program Effectiveness?

It’s Always a Good Time to Clean Up Your Vendor Contracts

2021 Offers New Opportunities Amid Healthcare Regulation Changes

5 Mistakes Covered Entities and Business Associates Made During a Security Risk Analysis

Let’s Talk about Why Qualitative Information Matters in Your Physician Needs Assessment

HHS Announces Changes to the HIPAA Privacy Rule

Top Five Trends in Healthcare for 2021

2021 E/M Coding Changes: What Healthcare Professionals Need to Know

COVID-19 Pandemic Exposes Vulnerabilities in Healthcare Organizations (Part 3)

COVID-19 Pandemic Exposes Vulnerabilities in Healthcare Organizations (Part 2)

The Keyword for Hospitals: Track Documentation of Physician Community Need Before Recruiting Physicians

COVID-19 Pandemic Exposes Vulnerabilities in Healthcare Organizations (Part 1)

Establishing Objective Evidence for Physician Needs Assessments

Information Blocking Compliance: What do Healthcare Providers Need to Know?

Should You Use a Non-Medical Grade Telemedicine Platform?

Healthcare and the Millennials

Case Study: Leveraging Technology During a Pandemic

Do Hospitals that Employ their Physicians Need a Community Need Assessment?

Navigating the New Normal of a Post-Pandemic World

Post-Pandemic Crisis Affiliation: Which Way is Up?

ONC Temporarily Relaxes Compliance Deadlines Related to the Cures Act

Hospitals Starting to Re-open: CMS Outlines First Steps on the Path to Re-opening Healthcare Facilities

COVID-19 Telehealth Privacy and Security Concerns

Telehealth: A Crucial Solution in Uncertain Times

Coker Group Telehealth Survey

Cyber Criminals are Targeting Telemedicine Visits

Telemedicine and COVID-19: Develop an Urgent Response with Sustainable Operational Value

Key Issues and Guidance for Hospitals and Medical Groups during the COVID 19 Pandemic

COVID-19 FRAUD ALERT

Responsive Compensation Arrangements to Battle COVID-19

The Role of Telehealth in the Fight Against COVID-19

Provider Compensation Management: Solving the Compensation Conundrum

Cybersecurity Tips

What Does It Mean for a Compliance Program to Be Effective?

Identifying Embezzlement Opportunities in a Medical Practice

Does the Corporation’s Compliance Program Work in Practice?

Is the [Compliance] Program Being Applied Earnestly and in Good Faith?

Is Your Corporate Compliance Program Well-Designed?

Engage an Expert Witness to Build a Sound Defense in Healthcare Legal Cases

Using Market Data to Establish Sustainable Physician Compensation Models

Recognizing and Mitigating Key Areas of Risk

Understanding and Preventing Physician Burnout

ProCare Portal

EHR Documentation Integrity Risks: Ten Ways to Stay Compliant

The Aging Physician Workforce

Why Every Healthcare Organization Needs a CIO

Is there a Looming Physician Shortage and What does it Mean?

Building Medical Staff Buy-In when Conducting a Physician Community Needs Assessment

Compliance Risk Mitigation in Healthcare Mergers & Acquisitions

Do Qualitative Factors Matter in Determining Physician Need?

Physician Compensation Plan Design: The Basics Make a Difference

Pursuing a Comprehensive Compensation Plan for Your Executive Leadership Team

Best Practices for Developing Employed Provider Compensation Plans

Burning Platforms: Common Characteristics and Considerations for Employed Provider Network (EPN) Turnarounds

Clinical Integration: The First Step in Moving Toward Value-Based Reimbursement

Five Tips to Keep Your Data Safe

Whistleblower Suits Put a Hole in a Health Systems’ Wallet: Implement an Effective “Tone at the Top” to Avoid Loss

Practice Management Basics: A Healthy Revenue Cycle Begins Up Front

Front-End Patient Collections: Where the Rubber Meets the Road

Physician Compensation Governance: Building a Good Foundation

Mitigating Risk when Migrating from one EMR to Another

Relationship Status with Productivity-Based Compensation: It's Complicated

Coding Compliance and WRVUS: What Lurks Beneath the Surface?

Conflict Management and Successful Leadership

Smoothing the Rough Spots in Patient Flow in Outpatient Practices