Literature Review

Healthcare ransomware attacks shift from hospitals to vendors: Report Becker's Health IT; by Naomi Diaz; 10/13/25 Ransomware attacks on U.S. healthcare businesses have increased in 2025, even as incidents targeting hospitals and clinics declined, according to a new report from Comparitech published Oct. 9. Here are five key findings from the report: ... 

Treasure Coast Hospice data breach: What you need to know Investors Hangout; by Henry Turner; 10/3/25 Overview of the Treasure Coast Hospice Incident Recently, Treasure Coast Hospice announced a significant cybersecurity incident that has compromised the personal information of over thirteen thousand individuals. This breach affected the confidentiality of sensitive records, including names, birth dates, and Social Security numbers. Such incidents highlight the importance of data security in healthcare services.

Best use of emerging tech in health systems from 50 leaders Becker's Hospital Review; by Scott King; 9/25/25 Emerging technologies have greatly improved efficiency at most health systems. Over 50 healthcare leaders spoke with Becker’s about their best uses of tech in the past year. ... As part of an ongoing series, Becker’s is connecting with healthcare leaders who will speak at the event to get their perspectives on key issues in the industry. ... Question: What’s your system’s best use of tech in the past year, and why?

CIOs’ top 16 emerging technologies Becker's Health IT; by Giles Bruce; 8/4/25 Emerging technologies such as AI continue to command CIOs’ attention. Here is the emerging tech prioritized by IT chiefs, according to a global survey of more than 200 CIOs by market researcher Futurum published July 28:

CIOs’ tech wishlist: What IT leaders would buy with a blank check Becker's Health IT; by Naomi Diaz; 7/14/25 If hospital and health system CIOs had unlimited resources, where would they place their biggest technology bets? Becker’s asked several IT leaders: If you had a blank check to invest in one technology tomorrow, what would it be and why? [Only a few responses are listed here. Go to the source article for the IT leaders' name, organization, role, and answer.]

Mayo Clinic gets $50M gift to boost innovation Becker's Health IT; by Naomi Diaz; 6/30/25 Rochester, Minn.-based Mayo Clinic has received a $50 million donation from Florida philanthropists Gilchrist and Amy Berg — a gift dedicated to the health system’s innovation efforts. The money will support Mayo’s Innovation Exchange, a program that helps healthcare startups and entrepreneurs bring new technologies to patients. In recognition of the donation, the program will be renamed the Mayo Clinic Berg Innovation Exchange, according to a June 30 news release. The Innovation Exchange serves as a hub for global collaboration, bringing together experts in AI, digital health, product design and more. It has a footprint on six continents and supports startups working on tools in diagnostics, therapeutics and medical devices, according to Mayo Clinic.

7 browser extension rules every organization should follow to stay secure PI - Programming Insider; by Mar Berman; 6/9/25 Browser extensions have become essential for workplace productivity. Yet, they pose serious security risks that many organizations ignore. These small programs can access sensitive data, alter web content, and create openings for cyberattacks. ... This article presents seven important rules for organizations to manage risks effectively. Whether you work in IT or lead a team, these steps keep your network safe and easy to use. ...

HHS wants input on how to improve digital health tech for Medicare patients Fierce Healthcare; by Heather Landi; 5/14/25 The Department of Health and Human Services (HHS) wants feedback on how it can develop better digital health tools for Medicare beneficiaries and drive adoption. The Centers for Medicare & Medicaid Services (CMS), in partnership with HHS' health IT arm, now called the Assistant Secretary for Technology Policy/Office of the National Coordinator for Health Information Technology (ASTP/ONC), is seeking public input on how best to "advance a seamless, secure, and patient-centered digital health infrastructure."

Cybersecurity executive arrested after hospital data breach Becker's Health IT; by Giles Bruce; 4/17/25 A cybersecurity executive has been arrested in connection with a data breach at an Oklahoma City hospital, KOCO reported. Authorities charged Oklahoma cybersecurity company CEO Jeffrey Bowie with installing malware at SSM Health St. Anthony Hospital, according to the April 16 story. Court documents allege security cameras caught him roaming inside the hospital and stopping at a computer, where he installed “malware designed to take a screenshot every 20 minutes and forward the image out to an external IP address.”

Cybersecurity contracts at risk as HHS cuts 150 IT workers: Report Becker's Health IT; by Naomi Diaz; 4/15/25 The Department of Health and Human Services could face a critical breakdown in its IT and cybersecurity systems after a sweeping reduction in force that eliminated key staff and leadership, Wired reported April 14, citing four current and former agency employees. More than 150 workers in HHS’ Office of the Chief Information Officer were among hundreds of administrative staff laid off April 1, according to the report. These employees were responsible for contract renewals and cybersecurity licenses and oversaw operations at the department’s Computer Security Incident Response Center — the hub for detecting and responding to cyberthreats across the department. Sources told Wired the cuts left no one in place to renew critical cybersecurity contracts, some of which are set to expire as soon as June.

Healthcare data breaches average $11M per incident: Report Becker's Health IT; by Naomi Diaz; 3/28/25 Cyberattacks have hit 78% of U.S. healthcare organizations, with the average cost of a breach soaring to $11 million per incident — largely due to ransomware attacks — according to a March 28 report from Black Book Market Research. Black Book Market Research, a technology survey organization, released findings from its first-quarter 2025 Global Healthcare Cybersecurity Survey, which gathered responses from more than 1,200 healthcare administrators worldwide. Participants were sourced through LinkedIn professional groups. The study revealed a sharp rise in cybersecurity threats targeting EHRs and patient data. [Continue reading ...] 

Four security updates to get ahead of proposed 2025 HIPAA Amendment Cisco Duo; by Katherine Yang; 3/31/25 Published in early January, the 2025 HIPAA Security Amendments are set to significantly enhance the protection of ePHI. The proposed changes are based off the US Department of Health and Human Services’ (HHS) goals of both addressing changes in the health care environment and clarifying what compliance obligations look like for regulated entities. Organizations have 180 days to reach compliance according to stricter standards of identity cybersecurity if the proposed updates pass. In order to be prepared, here are four things your organization or managed security service provider should focus on:  

Digital Transformation 101: A handy primerHealthcare IT News; by Bill Siwicki; 3/21/25 Robert Slepin, chief digital officer at SE Health and an emeritus CIO adviser at Epic, describes the key aspects of digital transformation that provider organizations need to understand, primary technologies involved and how to best organize the effort. Healthcare IT News sat down with him to discuss aspects of digital transformation efforts that provider organizations don't quite have a firm grasp on to begin with, the primary technologies involved in digital transformation, how to organize such a comprehensive effort as digital transformation, and his transformation effort at SE Health. [Continue reading ...]