“The Office of Inspector General (OIG) found cybersecurity gaps in the National Institutes of Health’s (NIH’s) All of Us precision medicine project that could expose personally identifiable information, including personal health information of the All of Us participants, and allow access to the data.”
“These vulnerabilities could have allowed an attacker with limited technical knowledge to exploit and compromise the participant-facing IT systems, because most of the vulnerabilities did not require significant technical knowledge to exploit, according to an OIG report (PDF)…”
“Ensuring that participant data are securely maintained is paramount to retaining the participants’ trust and participation in the project, OIG said in its report.”
“Through cooperative agreements, NIH established four components of All of Us: the biobank, the data and research center, the participant technology systems center and the participant center…” Read the full article here.
Source: OIG found cybersecurity gaps in NIH’s All of Us precision medicine research project – By Heather Landi, June 17, 2019. FierceHealthcare.
