Fierce Health Technology October 20, 2021
Rebecca Torrence

Third-party apps and aggregators that pull data from electronic health record systems may be vulnerable to hacks, putting millions of patient and clinician records at risk, a new report found.

In research published by cybersecurity company Approov, cybersecurity analyst and “recovering hacker” Alissa Knight tested the vulnerability of three production application program interfaces, communication channels that link a mobile app to the server containing EHR data. The APIs use the Fast Healthcare Interoperability Resources (FHIR) standard for healthcare data, containing aggregated data from more than 25,000 providers and payers.

With a single patient login account, Knight was able to access more than 4 million patient and clinician records.

Of the three APIs tested, which serve a network of 48 mobile...

Today's Sponsors

Venturous
Got healthcare questions? Just ask Transcarent

Today's Sponsor

Venturous

Continue Reading

 
Topics: Apps, Cybersecurity, Digital Health, Health IT, mHealth, Patient / Consumer, Provider, Technology
Related Articles:
Hospitals need more cybersecurity pros. It's time to recruit more women.
Embracing the healthcare ecosystem: Five ways leaders are reinventing procurement
55% of COOs Use GenAI to Improve Data Security
How AI And ML Are Shaping The Future Of SSE
18 Cybersecurity Tools That May Cause A False Sense Of Security

Share This Article