The Anthem hack reminds us how electronic medical record security is not ready for prime time

The-Anthem-computer-hackFebruary 5, 2015- Op-ED by Steven E. Greer, MD

The large health insurance company now called Anthem, formerly known as WellPoint (which owns Blue Cross plans, adding to the confusion of nomenclature) is making national news for announcing that 80 Million members have had their personal information stolen by computer hackers. The company made great effort in the press release on the hacking to assure the public that actual details of medical records were not breached, and that “only” social security numbers and other data were hacked.

The mainstream press did nothing to question the claim that actual medical records were not stolen. The Healthcare Channel asked the company to explain why they are so certain. They did not reply to our email.

Regardless of the true extent of the violation of privacy that the Anthem data theft poses, it highlights the biggest risk to electronic medical records: the data is nowhere nearly secured enough for e-records to be rolled out on mass scale for 300 Million Americans. Most doctors are instinctively untrusting of e-records for these very concerns.

Proponents of e-records usually have large vested financial interests in promoting them. For example, former Speaker of the House, Newt Gingrich, was trying to earn a living as a consultant and lobbyist for the e-records industry and was one of the most vocal advocates. The Federal government’s own CMS, which administers Medicaid and Medicare, also has a strong financial interest in better controlling costs through e-records. However, none of the entities with financial conflicts of interest in promoting e-records seem to have the best interest of the American citizen in mind.

The computer technology used by the companies awarded contracts by CMS to run crucial websites that collect personal medical records for the new ACA (ObamaCare) law were exposed as being incapable of doing even basic tasks when the ACA went live. Many companies security experts have pointed to the security holes in the ACA insurance exchange computer system.

Electronic medical records have information on everyone’s most sensitive, and potentially embarrassing, information, ranging from sexually transmitted diseases to histories of abortion. The information can also be used to discriminate against people with certain mental diagnoses.

Computer hackers are far more advanced that even the security teams hired by the wealthiest private industries. Computer-run websites, even at the Pentagon, are decades behind the hackers. For any logical person who does not have a financial interest in promoting e-records, it would seem to be a bad idea to roll them out in mandatory fashion on a mass scale.

This entry was posted in - Opinion, - Policy, CMS. Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *