Minder dan de helft van de volwassen Nederlandse bevolking heeft toestemming gegeven om de eigen medische gegevens via het Landelijk Schakelpunt (LSP) beschikbaar te stellen aan zorgverleners, zoals apotheken, huisartsen en ziekenhuizen, meldt het Centraal Bureau voor de Statistiek (CBS) dinsdag.

Een huisarts of apotheker kan zijn patiënt, nadat die daarvoor toestemming heeft gegeven, bij het LSP aanmelden. Vanaf dat moment kunnen andere zorgverleners inzicht krijgen in het elektronisch patiëntendossier. Mensen kunnen ook zichzelf online aanmelden.

Uit het onderzoek van het CBS blijkt dat 80 procent van de volwassen Nederlanders op de hoogte is van het bestaan van het LSP. Het koppelingsnetwerk, dat toegang geeft tot de databases, wordt beheerd door de Vereniging van Zorgaanbieders voor Zorgcommunicatie (VZVZ).

UK IT decision makers regard phishing, rather than ransomware, as the biggest cyber-threat facing their organisations in 2019, according to exclusive CRN research that will be unveiled at tomorrow's CRN On event.

Research conducted for the event, which will take place at Prince Philip House in London, quizzed 156 IT decision makers from UK private and public sector organisations.

Lawrence Jones MBE to headline CRN MSP North conference
Asked about the biggest cyber-threat facing their organisation this year, some 23 per cent pinpointed phishing.

What you don’t measure you cannot manage – or can you? Is this a controversial view? It has undoubtedly been branded untrue in the past.

I’m not sure there is a title “True Leader” as they come in all “shapes and sizes” and probably fit into the commonly defined categories such as “autocratic”, “democratic” and “laissez-faire”. In standard business practices, true leaders lead teams and companies by instinct and are influenced by previous experiences (both good and bad).

I wonder how risk-averse they really are, or do they rely on gut instinct where they feel comfortable because they have made decisions based on intuition successfully on many occasions. Is there a parallel to betting on red continually until the ball drops onto a black number?

A vulnerability disclosed today allows hackers to plant persistent backdoors on Cisco gear, even over the Internet, with no physical access to vulnerable devices.

Named Thrangrycat, the vulnerability impacts the Trust Anchor module (TAm), a proprietary hardware security chip part of Cisco gear since 2013.

This module is the Intel SGX equivalent for Cisco devices. The TAm runs from an external, hardware-isolated component that cryptographically verifies that the bootloader that loads and executes on Cisco gear is authentic.

In February 2018, the Under Armour hack turned out to be one of the biggest data breaches in history, affecting over 150,000,000 users. The sheer number of victims made it, at the time, a record-breaking data theft, but what’s really disturbing about this incident?

The type of private data was compromised as a result of that breach: private fitness records that include user’s health, performance, and location. It seems that the famous expression “information wants to be free” is taken by hackers too literally.

It’s hard to imagine that hacking a personal fitness company would make it into the hall of fame. But even if a user’s heart rate becomes vulnerable to a data breach, what about the more serious personal information that clients provide to various organizations?

Researchers from MedStar Health's National Center for Human Factors in Healthcare analyzed a database of more than 1.7 million patient safety event reports. Of those related to health IT, 64 percent listed no resolution at all.

More than half of those that did suggest a solution proposed further education or training, despite what the researchers describe as "the recognized limitations of training and education in resolving these events." Furthermore, only 6 percent of the reports included more than one suggested resolution.

In conclusion, according to the study, "Ensuring health information technology-related events are resolved and incorporate effective solutions should be a continued focus area for healthcare systems."

Protected health information on more than 7,600 Independent Health members was accidentally emailed to a member in March, a breach that violates federal privacy laws.

The Amherst-based health plan told members that an employee inadvertently emailed documents containing their information on March 19 to an unauthorized recipient who happened to be an Independent Health member.

Within an hour of the receiving the email, the recipient notified Independent Health and confirmed to the plan the email had been deleted, said Frank Sava, spokesman for the company.

Compromised information includes full names, birth dates, national ID numbers, medical insurance numbers, and other personal data.

An unprotected Elasticsearch server was found publicly exposing personally identifiable information belonging to nearly 90% of Panama citizens, a security researcher found last week.

Bob Diachenko, cyber threat intelligence director at Security Discovery, found the data sitting in a server, where it was publicly available and visible in any browser. The database held 3.4 million records containing detailed information on Panamanian citizens, labeled "patients," as well as 468,086 records labeled "test-patient." He reports the exposed information appears to be valid.

A security flaw in WhatsApp can be, and has been, exploited to inject spyware into victims' smartphones: all a snoop needs to do is make a booby-trapped voice call to a target's number, and they're in. The victim doesn't need to do a thing other than leave their phone on.

The Facebook-owned software suffers from a classic buffer overflow weakness. This means a successful hacker can hijack the application to run malicious code that pores over encrypted chats, eavesdrops on calls, turns on the microphone and camera, accesses photos, contacts, and other information on a handheld, and potentially further compromises the device. Call logs can be altered, too, to hide the method of infection.

To pull this off this intrusion, the attacker has to carefully manipulate packets of data sent during the process of starting a voice call with a victim; when these packets are received by the target's smartphone, an internal buffer within WhatsApp is forced to overflow, overwriting other parts of the app's memory and leading to the snoop commandeering the chat application.