It’s no secret that COVID-19 has led to heightened digitization in healthcare with permanent changes in how care is accessed and delivered across the patient journey. While many patients have been crying out for more digital healthcare services for years, the need to limit personal interaction during the pandemic has put concepts such as “telemedicine” and the “Digital Front Door” front and center. While many healthcare providers are unsure of how to get started, there’s never been a more urgent need to develop your own Digital Front Door strategy. Here’s a quick run-down of some things you s ..read more

Consumer-centric transactions are driving the evolution of the Digital Front Door. All healthcare organizations should give patients access to a robust and user-friendly digital experience via a Digital Front Door. Below, we outline the features that should be incorporated in a best-in-breed Digital Front Door. A Single Point of Entry Using a Single Sign-On (SSO) Patients should be able to gain access to all digital points of care via one entry point, using a single username and password. To achieve this, healthcare organizations using multiple third-party apps will need to consolidate or syn ..read more

Walgreens’ Poor Security Measures Exposed Patient Data and Covid-19 Test Results Patients who got a Covid-19 test at Walgreens, possibly as far back as July 2020, were vulnerable to data exposure due to subpar security measures. Patient Covid-19 test results and personal health information (PHI) were easily accessible from Walgreens’ test confirmation page to anyone with a 32-digit order ID number, a number that is easily generated. Walgreens took a long time to fix this issue. When they finally did, they merely added a second authentication step, requiring the date of birth of the patient. Pa ..read more

Building a healthcare Digital Front Door has become a necessity for providers if they want to meet patients’ evolving demands for more control and choice in managing their health. While your Digital Front Door may be aimed primarily at improving the patient experience, good software solutions can also be a powerful tool for managing workflows and providing efficiencies for clinicians and administrative staff. Once you’ve invested in a healthcare Digital Front Door, however, you may fall short of widespread adoption among both patients and staff due to poor awareness, insufficient eHealth lite ..read more

Infusion Pump Hack Could Allow Attackers to Change Meds Administered to Patients Researchers at McAfee uncovered a hack that allows attackers to take control of B. Braun infusion pumps, which are used in hospitals around the world. The attack requires physical network access to gain access to the SpaceStation, which could manage one or more pumps through one of its network-exposed endpoints. This could potentially lead to disastrous situations wherein patients are over-administered, or not administered, the drugs they need. The FDA is already reviewing this with McAfee as well as the provider ..read more

Dallas, TX — August 31, 2021 — Medical Web Experts announce their successful completion of the 2021 Service Organization Control (SOC) 2 audit. This audit is conducted by independent auditors, who report on the organization’s security and privacy controls, availability and processing integrity of data, and data confidentiality. A SOC 2 Type 1 certification is a critical achievement in highly-regulated industries such as healthcare IT and affirms that MWE’s security practices, procedures, and policies meet the rigorous standards for managing customer data according to the American Institute of ..read more

Medical Web Experts is now a SOC 2 Type 1 Certified Compliant Organization During Q2 2021, Medical Web Experts became a SOC 2 Type 1 compliant organization. The SOC 2 certification was developed by the American Institute of Certified Public Accountants (AICPA) as a way of evaluating whether a company follows the criteria for managing customer data according to their five trust service principles: security, availability, processing integrity, confidentiality, and privacy. Top 30 Routinely Exploited Vulnerabilities In a joint advisory CISA, ACSC, the NCSC, and FBI released what they found to be ..read more

Welcome back to the Medical Web Experts Security Bulletin. Below are some recent developments that may impact your organization, as well as our recommendations for keeping your systems secure. EU Regulators Fine Booking.com for Not Disclosing Breach in Time Travel company Booking.com was hacked in January 2019, and PII from 4,000 customers was stolen. Because they missed the GDPR’s 72-hour window for disclosing a breach, Booking.com was fined around half a million dollars. Though this is due to Europe’s GDPR regulations, HIPAA in the US imposes a similar stipulation with their Breach Notifica ..read more

Welcome back to the Medical Web Experts Security Bulletin. Below are some recent developments that may impact your organization, as well as our recommendations for keeping your systems secure. Do business in Virginia? They just passed a major data privacy law The state of Virginia has passed the Consumer Data Protection Act, which is similar to California’s CCPA. This new law defines how controllers (i.e. a person or group that determines how collected data is used) should collect, handle, and share personal information. If your organization does business in Virginia, you need to be ready for ..read more

The Covid-19 pandemic has brought sweeping changes to the healthcare industry in the United States, and organizations that rely heavily on fundraising have been affected in a unique way. In addition to the impact that economic instability typically has an individual’s or organization’s ability (or willingness) to donate, nonprofits are limited in their ability to hold in-person activities and events, which are a huge driver of donations. Just as other businesses have adapted to a remote-work model, healthcare nonprofits will need to adjust their strategies for fundraising during Covid to a mo ..read more