Yesterday, the Rochester Democrat and Chronicla did a huge front page write up on electronic medical records. How a cancer patient will not have to lug he medical folder woth him any more…Above the fold Photo and all! http://www.democratandchronicle.com/article/20110516/NEWS01/105160315/-1/7daysarchives/Patient-info-just-click-away
Now today…this is hidden on page 3 in a sidebar blip no one reads….in fact I had to type the entire first line to find any reference online to the announcement because the online edition of the D&C didn’t have it…
I added 2 extra spin articles to show how they blatantly lie to make it sound better than it really is…
May 16, 2011 http://www.jsonline.com/business/121967414.html
Washington – The nation’s push to computerize medical records has failed to fully address long-standing security gaps that expose patients’ most sensitive information to hackers and snoops, government investigators warn.
Two reports released Tuesday by the inspector general of the Health and Human Services Department find that the drive to connect hospitals and doctors so they can share patient data electronically is being layered on a system that already has glaring privacy problems. Connecting it up could open new pathways for hackers, investigators say.
The market for illicit health care information is booming. In recent years, the case of a former UCLA Medical Center worker who sold details from the files of actress Farah Fawcett, singer Britney Spears and others to the National Enquirer gained notoriety.
Most cases don’t involve celebrities or get much attention. Yet fraudsters covet health care records, since they contain identifiers such as names, birth dates and Social Security numbers that can be used to construct a false identity or send Medicare bogus bills. AND YOU DIDN”T ALREADY KNOW THIS BEFORE SUBJECTINGMILLIONS TO HACKERS?
The shortcomings in the system UNDERSTATEMENT! “need to be addressed to ensure a secure environment for health data,” said the main report, adding that the findings “raise concern” about the effectiveness of security safeguards for personal health care information.
President Barack Obama has set a goal for every American to have a secure electronic health record by 2014. DAMN THE CONSEQUENCES! Eventually, hospitals and doctors would be able to share instantly patients’ clinical information online. That could prevent life-threatening medical mistakes like giving a patient unconscious in the emergency room a drug to which he’s allergic. It could also save money by cutting duplicative lab tests and scans.
Auditors for the inspector general did find that the government agency leading the push for electronic records has put in place some requirements for safely transmitting computerized medical data.
However, that same agency has not issued general security requirements for the computer systems at hospitals and doctors’ offices, systems on which the information would be created, shared and stored. It’s a little like putting a big lock on the front door of the house, but leaving the garage door open.
To underscore the point, the second audit examined computer security at seven large hospitals in different states and found 151 security vulnerabilities, from ineffective wireless encryption to a taped-over door lock on a room used for data storage. The auditors classified four out of five of the weaknesses uncovered as “high impact,” meaning they could result in costly losses, even injury and death. Well then let’s really push this broken system on the rest of us…
The government is offering rewards and penalties to encourage hospitals and doctors’ offices to adopt electronic medical records. Incentive payments could total as much as $27 billion over 10 years. Providers who insist on clinging to paper records will eventually face cuts in Medicare payments. Are you F-ING KIDDING ME! I refuse to see a DR who will employ this dangerous, useless records gathering!
Responsibility for computer security is divided among several agencies in the Health and Human Services Department. The main ones are a unit called the Office of the National Coordinator, which is spearheading the drive to computerize records, and the Office of Civil Rights, which oversees the enforcement of existing privacy laws. Another useless, do nothing area we can shut down due to lack of efficiency.
The inspector general said the coordinator’s office has not asserted sufficient leadership on security, and the civil rights unit needs to redouble efforts to safeguard electronic privacy. How about NO SECURITY AT ALL!
In a written response, the coordinator’s office said it’s trying to balance between encouraging the adoption of electronic records and adding burdensome requirements. But it agreed to “actively explore” requiring stronger safeguards. WTF! Exploring? You put the identity of every person who walks through your doors at risk for ID Theft!
In its response, the civil rights unit questioned whether investigators could draw sweeping conclusions from audits of seven hospitals, and added that it regularly performs compliance reviews on health care facilities that report a breach affecting 500 people or more. So you already have “breaches” and are still pushing people to give you information that will be stolen and their lives ruined for a few Federal $$??
The hospitals were located in California, Georgia, Illinois, Massachusetts, Missouri, New York, and Texas. For security reasons, they were not identified. But the list of vulnerabilities read like a road map for hackers.
All of the hospitals had access control vulnerabilities, including inadequate passwords, computers that did not automatically log off inactive users, and unencrypted laptops that contained patient data.
Most of the hospitals had problems with wireless access, including inability to detect unauthorized intrusion, lack of continuous monitoring, and in some cases the absence of a firewall separating wireless from other internal networks. EVEN NOVICE USERS KNOW A FIREWALL IS NEEDED, ARE YOU REALLY THIS STUPID !!
May 17, 2011 http://www.theledger.com/article/20110517/NEWS/110519517/1021/life
WASHINGTON | The nation’s push to computerize medical records has failed to fully address longstanding security gaps that expose patients’ most sensitive information to hackers and snoops, government investigators warn.
Two reports released today by the inspector general of the Health and Human Services Department find that the drive to connect hospitals and doctors so they can share patient data electronically is being layered on a system that already has glaring privacy problems. Connecting it up could open new pathways for hackers, investigators say.
The market for illicit health care information is booming. In recent years, the case of a former UCLA Medical Center worker who sold details from the files of actress Farah Fawcett, singer Britney Spears and others to the National Enquirer gained notoriety.
Most cases don’t involve celebrities or get much attention. Yet fraudsters covet health care records, since they contain identifiers such as names, birth dates and Social Security numbers that can be used to construct a false identity or send Medicare bogus bills.
The shortcomings in the system “need to be addressed to ensure a secure environment for health data,” said the main report, adding that the findings “raise concern” about the effectiveness of security safeguards for personal health care information.
President Barack Obama has set a goal for every American to have a secure electronic health record by 2014. Eventually, hospitals and doctors would be able to share instantly patients’ clinical information online. That could prevent life-threatening medical mistakes like giving a patient unconscious in the emergency room a drug to which he’s allergic. It also could save money by cutting duplicative lab tests and scans.
Auditors for the inspector general did find that the government agency leading the push for electronic records has put in place some requirements for safely transmitting computerized medical data.
However, that same agency has not issued general security requirements for the computer systems at hospitals and doctors’ offices, systems on which the information would be created, shared and stored. It’s a little like putting a big lock on the front door of the house, but leaving the garage door open.
The government is offering rewards and penalties to encourage hospitals and doctors’ offices to adopt electronic medical records. Incentive payments could total as much as $27 billion over 10 years. Providers who insist on clinging to paper records will eventually face cuts in Medicare payments.
May 17, 2011 http://www.boston.com/news/nation/articles/2011/05/17/electronic_medical_records_vulnerable/
WASHINGTON — The nation’s push to computerize medical records has failed to fully address longstanding security gaps that expose patients’ most sensitive information to hackers and snoops, government investigators warn.
Two reports released today by the inspector general of the Health and Human Services Department find that the drive to connect hospitals and doctors so they can share patient data electronically is being layered on a system that already has glaring privacy problems.
Connecting it could open new pathways for hackers, investigators say.
The market for illicit health care information is booming. Swindlers covet health care records, since they contain identifiers that can be used to construct a false identity or send Medicare bogus bills.
The shortcomings in the system “need to be addressed to ensure a secure environment for health data,’’ the main report said, adding that the findings “raise concern’’ about the effectiveness of security safeguards for personal health care information.
The hospitals were located in California, Georgia, Illinois, Massachusetts, Missouri, New York, and Texas. For security reasons, they were not identified.
President Obama has set a goal for every American to have a secure electronic health record by 2014. Eventually, hospitals and doctors would be able to instantly share patients’ clinical information online.
a12iggymom's Blog 