Is the need to secure patient data keeping healthcare facilities from focusing on patient safety? Ted Harrington from Independent Security Evaluators joins CSO to discuss how research finds hospitals are coming up short in safeguarding vulnerable medical devices Credit: Thinkstock The discussion around healthcare security usually centers on concerns about privacy and the need to secure patient data. But research from one infosec consultancy finds that in the haste to comply with increased regulations and rules for protecting patient information, hospitals are overlooking security holes when it comes to human health.Vulnerabilities in health equipment, both active (for example, pacemakers), and passive (e.g., vital-sign monitors), mean that hackers could potentially harm (or kill) a patient staying at a healthcare facility. With many security teams at hospitals understaffed and looking for resources, this has the potential to be a large problem that may take years to fix.In the latest episode of Security Sessions, I spoke with Ted Harrington from Independent Security Evaluators. The consulting and research firm recently conducted a two-year study that looked at a wide variety of security issues that hospitals face, and the results are eye opening.Among the highlights of the video, which you can watch below, are the following sections: 1:02 An overview of the “Securing Hospitals” study2:50 Why patient health security isn’t being safeguarded compared with patient data and privacy. 05:51 If a hacker hasn’t accomplished this yet, are we just spreading fear, uncertainty and doubt?07:30 In what areas are hospitals falling short, and why do those shortcomings exist?10:00 Plans and recommendations for health care groups on how to be more pro-active on the issue. Related content feature Why CSOs and CISOs need to care about machine learning Michael A. Davis of CounterTack explains the security challenges around machine learning, and how some of the issues can be solved for free (yes, free!) By Joan Goodchild May 03, 2017 2 mins Data and Information Security IT Leadership Security news How CISOs can explain privacy to the C-suite With the recent moves by the FCC, it is imperative that chief security officers make the company aware of privacy issues. By Ryan Francis Apr 13, 2017 5 mins Privacy Careers Security feature Realistic ways to lock down IoT How CSOs can best secure and understand IoT devices that enter their organization's network infrastructure By Joan Goodchild Apr 07, 2017 1 min Application Security Security news Follow the money! Where VC security investment is occurring By Joan Goodchild Mar 22, 2017 1 min Technology Industry IT Leadership Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe