Inspector General: Push For EMRs Overlooks Security IssuesPBS NewsHour: Report: Push For Electronic Medical Records Overlooks Security Gaps
The Office of the Inspector General found "a lack of general [information technology] security controls during prior audits at Medicare contractors, State Medicaid agencies, and hospitals." The investigation audited computer security at seven large hospitals in different states, and found 151 major vulnerabilities, including unencrypted wireless connections, easy passwords, and even a taped-over door lock on a room used for data storage. The auditors classified 124 of the breeches were "high impact" - resulting in costly losses, injury or death. According to the report, "outsiders or employees at some hospitals could have accessed, and at one of the seven hospitals did access, systems and beneficiaries' personal data" (Clune, 5/17). This is part of the KHN Morning Briefing, a summary of health policy coverage from major news organizations. Sign up for an email subscription.