NIST releases draft cybersecurity practice guide for electronic health records

As medical records are increasingly digitized, providers of health IT products and services and medical providers who store sensitive patient health information present tempting targets for attackers.  Medical providers now regularly use mobile devices in their practices, but NIST notes that “the use of mobile devices to store, access and transmit electronic health care records is outpacing the privacy and security protections on those devices.”  The Department of Health and Human Services maintains a list of data breaches affecting the health information of 500 or more individuals, and 1,283 such incidents have been reported since late 2009, including 41 in June and July alone. 


Read more at: Lexology