Clearwater

News Room

HealthITSecurity

Servers Cause Most Health Breaches, C-Suite Lacks Funds to Fight Threats

June 17, 2019

Clearwater finds the majority of health breaches last year were caused in some way by a server, while a CynergisTek report found a lack of resources, tools, and talent make it difficult for the C-suite to keep up with the threat landscape.

Read More
outsourcingpharma

ClinOne Works with Uber Health to Improve Patient Access to Trials

June 12, 2019

ClinOne is now integrated with Uber Health to provide patient transportation services to clinical trial sites.

Read More
Home Health Care News

Uber Health Exec: ‘There’s So Much We Can Do When It Comes to Home Care’

June 9, 2019

As Medicare Advantage (MA) plans prepare to expand their supplemental benefits in 2020 to cover even more non-medical services, players from a growing number of industries are hopping on board. That includes ride-hailing companies such as Lyft (Nasdaq: LYFT) and Uber (NYSE: UBER), which say seniors are a driving force in their health care businesses. The competitors have been vocal about the need to tackle social determinants of health, with MA plans becoming an increasingly popular vehicle to make it happen.

Read More
NBC10+Logo+2018

NBC10 Responds: 2 Medical Companies Reveal Massive Data Breaches

June 6, 2019

Two medical companies have revealed massive data breaches. Nearly 20 million patients have been exposed because of it. Jon Moore, SVP & Chief Risk Officer provides perspective on the impact of this third-party data breach. 

Read More
healthcare info sec

Quest Diagnostics: Data on 12 Million Patients Exposed

June 4, 2019

A data breach at American Medical Collection Agency has affected nearly 12 million patients who had lab tests performed by Quest Diagnostics. The incident, which appears to be the biggest health data breach to be revealed so far in 2019, exposed financial data, Social Security numbers and certain medical information, the lab test firm reports. In a statement Monday, Secaucus, New Jersey-based Quest Diagnostics says AMCA, based in Elmsford, New York, informed the lab testing firm in May that an “unauthorized user” had access to AMCA’s system containing personal information the collections agency received from various entities, including from Quest.

Read More

AHIMA Advantage: Anticipating Privacy, Security Changes Ahead—Going Back To Basics

June 3, 2019

Other developing issues could affect privacy and security rules, says Wes Morris, CHP, CIPM, HCISPP, Managing Principal Consultant, Clearwater, Mountain Home, ID. For example, opium reporting rules are evolving differently state by state, creating a challenge for HIM professionals to understand which rules apply to them and how they sync with federal regulations, says Morris, who also co-chairs the Privacy and Security Practice Council.”…I would encourage the industry as a whole to,  first and foremost, make sure what you have in place is working for you and meeting the needs of two groups: patients, whose information you are there to protect and manage, and the staff of your organization, who have to work within your policies and procedures.”

Read More
Tech Nation

Roundtable: Cybersecurity

May 31, 2019

Cybersecurity continues to be an important and hot topic in health care, especially in the HTM community. TechNation quizzed some industry experts and educators about cybersecurity in search of information and tips to help readers. Participating in the roundtable discussion on cybersecurity are Medigate Co-founder and CEO Jonathan Langer, Cynerio CEO and Founder Leon Lerman, Clearwater Chief Risk Officer and Senior Vice President of Professional Services Jon Moore, CyberMDX Vice President of Business Development Safi Oranski, Nuvolo Vice President of Product Marketing Ben Person, Texas State Technical College-Waco Associate Professor of Biomedical Equipment Technology Garrett Seeley and Extreme Networks Director of Healthcare Solutions Bob Zemke.

Read More
Health Data Management

Cyber Threat Firm’s Error Exposes Health Data of 1.6M Puerto Ricans

May 25, 2019

As many as 1.6 million individuals in Puerto Rico may have their health information exposed because of a snafu by an information technology vendor. Inmediata Health Group operates a database that captures current cyber threats and assesses, remediates and monitors risks to critical business systems and data. In January, Inmediata became aware that protected data was viewable online because a web page setting permitted search engines to index internal webpages used for business operations.

Read More

Press Releases

Clearwater Adds Cybersecurity Expert Cathie Brown as Vice President of Professional Services

Clearwater, a top-ranked provider of healthcare cyber risk software and consulting services, today announced the appointment of Cathie Brown as Vice President, Professional Services. Ms. Brown brings more than 30 years of experience in healthcare, health information technology, health information security and consulting.

Clearwater Further Streamlines Enterprise Risk Analysis for Health Systems with Its Patent-Pending “Component Expert System” Technology

As the healthcare industry continues to be targeted by cyber attacks, Clearwater has released new, breakthrough technology that provides hospitals and health systems with a more intelligent view into all of the processes, people, locations, technology and components that can pose a data security risk to an information system. Clearwater’s new Component Expert System (CES), embedded in its IRM|Analysis™ software, enables hospitals and health systems to complete the security risk analysis (SRA) process more efficiently across the enterprise by logically grouping similar information system components based on their properties and associated controls. The patent-pending technology automatically identifies relevant cyber and information risk scenarios, thereby facilitating a more effective risk assessment process.

Company Blog

Key Takeaways From Breakfast & Breaches™ | D.C.

Clearwater’s recent Breakfast & Breaches event in Washington, DC brought together an outstanding group of leaders with unique insight on the growing problem of how to keep protected health information secure. Drawing on their combined decades of experience working across the compliance spectrum, our panelists and moderator challenged the audience’s thinking with regard to how their organizations analyze and manage risks.

Highest Level of Security Weaknesses in Hospitals and Health Systems Uncovered

More than half (54%)* of all individuals affected by a healthcare information breach in the past twelve months were impacted by a breach that touched the affected organization’s server, according to data provided on the U.S. Department of Health and Human Services Office for Civil Rights Breach Portal: Notice to the Secretary of HHS Breach of Unsecured Protected Health Information. According to the data, ninety (90) healthcare breaches — affecting more than nine million individuals—were related to servers in some way.

Managing Third-Party Information Security Risk

Clinical laboratory provider Quest Diagnostics recently acknowledged that a billings collections vendor it works with suffered a data breach on its web payment system that may have exposed information of nearly 12 million of Quest’s patients. The third-party company, Elmsford, N.Y.-based American Medical Collection Agency (AMCA), is contracted with Optum360 LLC, which in turn provides payment services to Quest.

Interested in how the solutions featured in this case study could help your organization?