Mitigating the consequences of electronic health record data breaches for patients and healthcare workers

被引:3
作者
Looi, Jeffrey C. L. [1 ,2 ]
Allison, Stephen [2 ,3 ]
Bastiampillai, Tarun [2 ,3 ,4 ]
Maguire, Paul A. [1 ,2 ]
Kisely, Steve [2 ,5 ,6 ,7 ,8 ]
Looi, Richard C. H. [7 ]
机构
[1] Australian Natl Univ, Canberra Hosp, Sch Med & Psychol, Acad Unit Psychiat & Addict Med, Bldg 4,Level 2,POB 11, Garran, ACT 2605, Australia
[2] Consortium Australian Acad Psychiatrists Independe, Canberra, ACT, Australia
[3] Flinders Univ Australia, Coll Med & Publ Hlth, Adelaide, SA, Australia
[4] Monash Univ, Dept Chem Engn, Wellington Rd, Clayton, Vic, Australia
[5] Univ Queensland, Princess Alexandra Hosp, Sch Med, Ipswich Rd, Brisbane, Qld, Australia
[6] Dalhousie Univ, Dept Psychiat, Halifax, NS, Canada
[7] Dalhousie Univ, Dept Community Hlth, Halifax, NS, Canada
[8] Dalhousie Univ, Dept Epidemiol, Halifax, NS, Canada
来源
AUSTRALIAN HEALTH REVIEW | 2024年 / 48卷 / 01期
关键词
consumers; cyber security; data breach; e-health; electronic health record; health services management; healthcare workers; information management;
D O I
10.1071/AH23258
中图分类号
R19 [保健组织与事业(卫生事业管理)];
学科分类号
摘要
Electronic health records (EHRs) have been widely adopted in Australian public sector healthcare and will remain an ongoing, essential data system. However, recent substantial data breaches from hacked business data systems in Australian enterprises, as well as international healthcare providers, mean that EHR data breaches are increasingly likely in Australia. Risks include medical identity theft and extortion attempts based on threats to release sensitive patient information. Hacking is now a foreseeable additional risk of medical treatment. Risk mitigation for the consequences of data breaches needs to be considered, as well as support for patients (and families) and healthcare workers. This includes identity theft protection services, cybersecurity insurance, and psychological support. What is known about this topic? Electronic health records, in common with business and healthcare data systems, are vulnerable to data breaches and have been recently targeted in Australia and internationally. What does this paper add? Electronic health records present particular cybersecurity data breach risks for patients and healthcare workers through the release of confidential information, identity theft, and associated psychological distress. What are the implications for practitioners? Electronic health record platforms need legislative regulation and personalised provision of support to patients and healthcare workers to mitigate the consequences of inevitable data breaches.
引用
收藏
页码:4 / 7
页数:4
相关论文
共 15 条
[1]  
ABC, 2022, Hackers claim they demanded $15 million ransom as more Medibank customer data posted to dark web
[2]  
[Anonymous], 2023, Health Information Privacy
[3]   Doxing: What Adolescents Look for and Their Intentions [J].
Chen, Mengtong ;
Cheung, Anne Shann Yue ;
Chan, Ko Ling .
INTERNATIONAL JOURNAL OF ENVIRONMENTAL RESEARCH AND PUBLIC HEALTH, 2019, 16 (02)
[4]  
Clifford T., 2016, JLSP, V12, P45
[5]   Public and physician's expectations and ethical concerns about electronic health record: Benefits outweigh risks except for information security [J].
Entzeridou, Eleni ;
Markopoulou, Evgenia ;
Mollaki, Vasiliki .
INTERNATIONAL JOURNAL OF MEDICAL INFORMATICS, 2018, 110 :98-107
[6]  
IBM Security, 2023, Tech. Rep.
[7]  
Medibank Private Limited, 2023, Cyber Response Support Program
[8]   Towards understanding cybersecurity capability in Australian healthcare organisations: a systematic review of recent trends, threats and mitigation [J].
Offner, K. L. ;
Sitnikova, E. ;
Joiner, K. ;
MacIntyre, C. R. .
INTELLIGENCE AND NATIONAL SECURITY, 2020, 35 (04) :556-585
[9]  
OIAC, 2023, Notifiable Data Breaches Report
[10]  
OIAC, 2023, AIC AUSTR CLIN LABS
12