HHS Report Warns of EMR and EHR Security Risks

Rivkin Radler LLP
Contact

Rivkin Radler LLP

The U.S. Department of Health and Human Services’ Health Sector Cybersecurity Coordination Center (HC3) recently issued a report entitled “Electronic Medical Records in Healthcare” that discussed security risks applicable to electronic medical records (EMRs) and electronic health records (EHRs). EHRs and EMRs are prime targets for cyber attackers because protected health information (PHI) can be sold on the dark web or black market.

EHRs and EMRs are vulnerable to external security risks, including phishing attacks and ransomware, as well as insider threats and user error. HC3 urged healthcare entities to take common-sense steps including educating employees, verifying external requests for data before sending it, and encrypting data to be transferred to external cloud applications.

Organizations should also implement cyber incident response plans in case of attack. The report recommended that “healthcare leaders shift their focus by moving beyond a prevention strategy and creating a proactive preparedness plan.”

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations. Attorney Advertising.

© Rivkin Radler LLP

Written by:

Rivkin Radler LLP
Contact
more
less

PUBLISH YOUR CONTENT ON JD SUPRA NOW

  • Increased visibility
  • Actionable analytics
  • Ongoing guidance

Rivkin Radler LLP on:

Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
- hide
- hide