Hospitals Failing on Security Hygiene

Hospitals Failing on Security Hygiene

Healthcare organizations (HCOs) are increasingly at risk from legacy operating systems, device complexity and the use of commonly exploited protocols, according to a new study from Forescout.

“Users want control” is a shoulder shrug

“Users want control” is a shoulder shrug

If the person wants to determine their own path, if having choice is itself a personal goal , then you need control. People don’t want to lose their data, but having personal control over your data is a great way to lose it, or even to lose control over it.

Don't Mail In That DNA Kit Until You Know These Facts

Don't Mail In That DNA Kit Until You Know These Facts

As we become more comfortable with at-home DNA testing kits and allowing companies to assess our biological makeup, the market continues to shift in a variety of ways including the types of diseases and disorders that can be tested, how accurate the tests are, and the amount of information shared – which can include selling your data to third parties.

Julian Assange Suffered Severe Psychological and Physical Harm in Ecuadorian Embassy, Doctors Say

Julian Assange Suffered Severe Psychological and Physical Harm in Ecuadorian Embassy, Doctors Say

An American doctor who conducted several medical and mental health evaluations of WikiLeaks founder Julian Assange inside Ecuador’s Embassy in London over the last two years says that she believes she was spied on and that the confidentiality of her doctor-patient relationship with Assange was violated.

2018 Online Trust Audit and Honor Roll

2018 Online Trust Audit and Honor Roll

As in previous years, 100 baseline points can be earned in each of the three major assessment categories (consumer protection, site security and privacy).

Amazon’s Alexa can handle patient information now — what does that mean for privacy?

Amazon’s Alexa can handle patient information now — what does that mean for privacy?

In the case of Livongo, the company whose voice skill lets users check their blood sugar reading, Alexa is mostly a way to transmit the information.

Facebook Succeeded In Killing Cybersecurity Like It Did Privacy

Facebook Succeeded In Killing Cybersecurity Like It Did Privacy

As Facebook teaches society across the world to no longer care about cybersecurity, the world’s companies will recognize that their costly investments in securing their user data may no longer be necessary.

The unauthorized sale of your health data is coming to an end

The unauthorized sale of your health data is coming to an end

Data brokers then aggregate this deidentified health information and sell it to third party buyers; for example Adam Tanner of the Harvard Institute for Quantitative Social Science estimates that a large pharmaceutical company might pay between $10 million and $40 million per year for data, consulting and services from Iqvia alone.

Microsoft Built a Chat Bot to Match Patients to Clinical Trials

Microsoft Built a Chat Bot to Match Patients to Clinical Trials

The project is part of a larger Microsoft (msft) health care bot initiative that’s helped partners build automatic chat programs for things like triaging patients and answering questions about insurance benefits.

Should Google’s Involvement In Healthcare Worry You?

Should Google’s Involvement In Healthcare Worry You?

Though it’s still unclear whether this will give Google access to patient records (DeepMind has made deals with Britain’s National Health Service in order to help doctors monitor kidney patients), what is clear is that Google has major healthcare aspirations.

Why do they think they have rights to your data

Why do they think they have rights to your data

And you don’t care?’ Today, every digital service you use (like application or mobile app) and every smart piece of hardware you buy (smart TV, your mobile phone or that fancy gym gadget…), is almost surely watching you.

2.7 million patient calls to Swedish healthcare hotline left unprotected online

2.7 million patient calls to Swedish healthcare hotline left unprotected online

The 170,000 hours of incredibly sensitive calls were stored on an open web server without any encryption or authentication, leaving personal information completely exposed for anyone with a web browser. Phone calls to the MEDICALL help service were stored as WAV audio files on an unsecured server.

Stop saying, “We take your privacy and security seriously”

Stop saying, “We take your privacy and security seriously”

The truth is, most companies don’t care about the privacy or security of your data.

Carriers selling your location to bounty hunters: It was worse than we thought

Carriers selling your location to bounty hunters: It was worse than we thought

I’m going to go out on a limb and say real-time location data probably shouldn’t be outsourced That’s presumably in addition to the data these carriers shared with Zumigo and Microbilt, the second-hand and third-hand data brokers we learned about last month.

Hundreds of Bounty Hunters Had Access to AT&T, T-Mobile, and Sprint Customer Location Data for Years

Hundreds of Bounty Hunters Had Access to AT&T, T-Mobile, and Sprint Customer Location Data for Years

Around 250 bounty hunters and related businesses had access to AT&T, T-Mobile, and Sprint customer location data, with one bail bond firm using the phone location service more than 18,000 times, and others using it thousands or tens of thousands of times, according to internal documents obtained by Motherboard from a company called CerCareOne, a now-defunct location data seller that operated until 2017.

So You Want to Take Back Your Privacy

So You Want to Take Back Your Privacy

For those who aren’t: a few years ago I got serious about my privacy and while moving away from proprietary software and services, I started moving towards using FOSS ones (VPNs being a large and trouble-infested corner of this realm).

How your health information is sold and turned into ‘risk scores’

How your health information is sold and turned into ‘risk scores’

Story Continued Below Over the past year, powerful companies such as LexisNexis have begun hoovering up the data from insurance claims, digital health records, housing records, and even information about a patient’s friends, family and roommates, without telling the patient they are accessing the information, and creating risk scores for health care providers and insurers.

Opt out of My Health Record

Opt out of My Health Record

If you opt out, you can get a My Health Record in the future Once you have completed the opt-out process, you cannot cancel your request. Please contact us if you If you need to contact the Help line for assistance you can check the current call wait times.

Facebook has 5 ‘core values.’ Guess where ‘protect users’ ranks

Facebook has 5 ‘core values.’ Guess where ‘protect users’ ranks

The disappointing details, reported by The New York Times, call to mind the sage observation of poet Maya Angelou: “When someone shows you who they are, believe them the first time.” In every company there is some gap between professed core values and the lived values that actually guide decisions and actions.

NYCLU sues ICE over changes to immigrant risk assessment algorithm

NYCLU sues ICE over changes to immigrant risk assessment algorithm

The tool provides an algorithm-based recommendation on whether an immigrant should be detained in jail until they can see a judge — or whether they can instead be released on bond in the interim.

There’s No Such Thing as Anonymous Data. But This Is How They’re Playing us with It.

There’s No Such Thing as Anonymous Data. But This Is How They’re Playing us with It.

Because I’ve appealed to your most basic common sense reactions with a shallow argument (but worthwhile benefit — don’t get me wrong), and right here I’d have an excuse to use your data for other purposes.

Read this if you’ve got ‘nothing to hide’

Read this if you’ve got ‘nothing to hide’

If you’re one of those people who think privacy isn’t really an issue for you because you have nothing to hide, you should read this. This is privacy; the right to feel unobserved and act like nobody is watching.

‘I Don’t Really Want to Work for Facebook.’ So Say Some Computer Science Students.

‘I Don’t Really Want to Work for Facebook.’ So Say Some Computer Science Students.

Chad Herst, a leadership and career coach based in San Francisco since 2008, said that now, for the first time, he had clients who wanted to avoid working for big social media companies like Facebook or Twitter.

Need medical help? Sorry, not until you sign away your privacy

Need medical help? Sorry, not until you sign away your privacy

I dutifully entered my info anyway—immediate physical needs have a way of leapfrogging over data privacy concerns, even for people like me who feel strongly about maintaining control over how their information is collected and used.

California Banned Default Passwords, But Will This Increase Security?

California Banned Default Passwords, But Will This Increase Security?

This law mandates that manufacturers preprogram a unique password for each individual device and that the user is required to change this password upon first login.

“Information Fiduciaries” Must Protect Your Data Privacy

“Information Fiduciaries” Must Protect Your Data Privacy

Accordingly, several law professors have proposed adapting these venerable fiduciary rules to apply to online companies that collect personal data from their customers.

Hackers steal data of 75,000 users after Healthcare.gov FFE breach

Hackers steal data of 75,000 users after Healthcare.gov FFE breach

Healthcare insurance agents and brokers use the FFE to enroll users into Obamacare plans made available through the official HealthCare.gov portal. US citizens can still enroll for Obamacare health care plans via the HealthCare.gov portal or the Marketplace Call Center.

Hackers breach Healthcare.gov system, taking files on 75,000 people

Hackers breach Healthcare.gov system, taking files on 75,000 people

A government system used by insurance agents and brokers to help customers sign up for healthcare plans was breached, allowing hackers to siphon off sensitive and personal data on 75,000 people. CMS didn’t say exactly what kind of data was included in the stolen files, nor did it say how the breach happened.

Facebook's security is so bad it's surprising Zuckerberg hasn't deleted his account

Facebook's security is so bad it's surprising Zuckerberg hasn't deleted his account

Less than a year after the Cambridge Analytica scandal launched a privacy reckoning, Facebook is back in the news over yet another data breach, this one a security breach affecting almost 50 million accounts, leaving many wondering, again, how safe their personal info really is.

Google's DeepMind gains access to wide swath of British healthcare data

Google's DeepMind gains access to wide swath of British healthcare data

Under an agreement with the UK's National Health Service (NHS), Google's AI unit DeepMind has gained access to health care data on patients from three London hospitals, New Scientist reports.

More