Article

Cybersecurity Is a Major Risk During the Transition to EHRs

Technology, specifically the electronic medical record, is becoming more prevalent in the healthcare industry; however, there are significant cybersecurity risks due to the major information shift.

Technology, specifically the electronic medical record, is becoming more prevalent in the healthcare industry; however, there are significant cybersecurity risks due to the major information shift.

A paper published in JAMA discussed the risks involved in the transition from paper medical records to electronic, and the prevention methods that are needed to avoid the consequences of potential viruses and hackers.

Congress had established the Health Care Industry Cybersecurity Task Force (HCIC) in 2015 to protect from 2 malware viruses—WannaCry and Petya. The HCIC was made up of 21 members including representatives in the federal government, patient advocates, and information technology (IT) specialists. In its report, Report on Improving Cybersecurity in the Health Care Industry, the HCIC suggested 6 critical recommendations for the healthcare industry, including:

  1. Identify and streamline leadership, governance, and expectations for healthcare cybersecurity.
  2. Increase the security of medical devices and health IT.
  3. Create the healthcare workforce capacity needed to prioritize and guarantee cybersecurity awareness and technical capabilities.
  4. Increase the industry’s readiness by improved cybersecurity awareness and education.
  5. Identify mechanisms to protect the research, development efforts, and intellectual property from attacks.
  6. Improve the information sharing of threats, weaknesses, and mitigations in the industry.

The development of electronic health records has produced a new risk for patients that potentially have more severe consequences. For example, ransomware—a software that permanently blocks access to records unless a ransom is paid—has the potential to isolate large data files that can limit patient care for extended periods.

“This stolen information not only can be sold for financial gain, but also can be used by other individuals to receive medical care, providing an opportunity for intermingling of medical information that can alter an allergy history, medication list, or other critical elements of a patient’s history,” the authors wrote. “This vulnerability can undermine public trust and prompt patients to withhold sensitive but needed information about medical history.”

Not all small hospitals and practices have access or the resources to protect against certain cybersecurity risks, and therefore should practice cyber hygiene, according to the authors. This can be accomplished by regularly changing passwords, ensuring their passwords are strong, and being aware of certain vulnerabilities, including non-updated software.

Despite the benefits of improved access that electronic health records and technology advancements provide, the healthcare industry should make an effort to prevent negative consequences that come with these new technologies through promoting awareness.

Related Videos
Masanori Aikawa, MD
Glenn Balasky, executive director of the Rocky Mountain Cancer Center.
Benjamin Scirica, MD, MPH, associate professor of medicine at Harvard Medical School and director of quality initiatives at Brigham and Women’s Hospital’s Cardiovascular Division
Glenn Balasky during a video interview
dr joseph alvarnas
Michael Lynch, MD, UPMC
dr alex jahangir
Fahad Tahir, MAS, MBA, FACHE, Ascension St Thomas
Leland Metheny, MD, University Hospitals Seidman Cancer Center
Andrew Cournoyer
Related Content
Collaborating for Cancer Care Equity: Community and Academic Insights
November 21st 2024

Collaborating for Cancer Care Equity: Community and Academic Insights

Maggie L. Shaw
Coverage from the recent Institute for Value-Based Medicine event with NYU Langone Health.
Managed Care Cast logo
October 22nd 2024

Engage, Educate, Empower: Transforming Kidney Care

Maggie L. Shaw
In our conversation with Jeff Giullian, MD, MBA, chief medical officer with DaVita Kidney Care, we dive into 4 important aspects of kidney care: prevention, social support, integrated care, and patient support.
Health care apps. | Image Credit: elenabsl - stock.adobe.com
November 14th 2024

Review of Digital Health Apps That Are Redefining Care

Cameron Santoro
Health care apps like MyChart, mySugr, GoodRx, and Smoke Free can enhance patient care through accessibility, convenience, and engagement, but further discussion is warranted on the optimal use of these apps.
Managed Care Cast logo
July 25th 2024

Dr Jason Spangler on Enhancing Equity in Health Technology Assessment

Brooke McCormick
On this episode of Managed Care Cast, we're talking with Jason Spangler, MD, MPH, CEO of the Center for Innovation and Value Research on equity challenges within health technology assessment.
ISM001-055 is a novel drug developed through generative AI biotechnology | image credit: ipopba - stock.adobe.com
November 12th 2024

Novel, AI-Procured ISM001-055 Demonstrates Great Promise for Treatment of IPF

Kyle Munz
The development of a novel, artificial intelligence (AI)-generated biotechnology has the potential to transform care options for patients with idiopathic pulmonary fibrosis (IPF).
CRC | Image credit: mi_viri - stock.adobe.com
November 7th 2024

Disparities Persist in CRC Screening, Management Between High-, Low-Income Countries

Julia Bonavitacola
Low- and high-income countries had significant disparities in screening for colorectal cancer (CRC) due to limited access to screening and treatment in low-income countries.

2 Commerce Drive
Suite 100
Cranbury, NJ 08512

© 2024 MJH Life Sciences® and AJMC®.
All rights reserved.

About
Contact
Editorial Boards
Advertise
Do Not Sell My Information
Terms & Conditions
Privacy Policy
AJMC Managed Markets Network Logo
CH LogoCenter for Biosimilars Logo