Devising strategies for ensuring social media are not used in ways that violate patient privacy is one of the top trends for 2011, says Lisa Gallagher, senior director of privacy and security at the Healthcare Information and Management Systems Society.
Unfettered access to state data "is the kind of stuff that causes me to lose sleep at night," Delaware CSO Elayne Starkey says, in explaining new, stringent rules to let employees use their own smart phones to access state networks.
To help agencies secure their wireless networks and technologies, the Government Accountability Office came up with eight leading practices. For now, GAO says, wireless networks remain at an increased vulnerability to attack.
As hospitals and clinics develop strategies for complying with the privacy and security provisions of the HITECH Act and HIPAA, they must be careful not to overlook the additional risks involved in using wireless technologies.
Robert Siciliano, a McAfee security consultant and founder of IDTheftSecurity.com, says socially engineered scams that are SMS/text-based will create big headaches for banks and credit unions in the near future.