Schedule a Demo
Client Portal

Home > Resources

Preventing Cyber-Attacks for Radiology & Interventional Specialists

  • by StreamlineMD

The healthcare industry is a prime target for global hackers.  In today’s digitally interconnected world, the healthcare industry is increasingly reliant on technology to improve patient care, streamline operations, and enhance communication. However, this dependence on technology also brings about significant cybersecurity risks, particularly for medical practices handling sensitive patient data. With the growing threat of cyber-attacks targeting healthcare organizations, radiology and interventional specialty practices must prioritize cybersecurity measures to protect patient privacy and maintain the integrity of their systems. Here are some best practices for preventing cyber-attacks in radiology and interventional specialist practices:

  1. Employee Training and Awareness: One of the most critical aspects of cybersecurity is ensuring that all radiology and interventional staff members are well-educated about the risks and trained in best practices for data protection. Conduct regular training sessions to educate employees about the importance of strong passwords, identifying phishing emails, and recognizing suspicious activities.  StreamlineMD uses HIPAA Secure Now and highly recommends this HIPAA training and security program for its clients.
  2. Beware of Email Vulnerabilities: Email remains one of the most vulnerable aspects of cybersecurity for medical practices. Despite advancements in email filtering and security protocols, email continues to be a primary vector for cyber-attacks such as phishing, malware distribution, and spoofing. Phishing emails, in particular, pose a significant threat by tricking unsuspecting employees into divulging sensitive information or clicking on malicious links or attachments. Even with training and awareness efforts, sophisticated phishing attacks can still evade detection, putting patient data and the practice’s network at risk of compromise. Additionally, email spoofing, where attackers impersonate trusted entities or colleagues, further exacerbates the vulnerability of email systems, potentially leading to social engineering attacks or the unauthorized disclosure of confidential information. As such, medical practices must implement robust email security measures, including advanced threat detection, authentication protocols like SPF, DKIM, and DMARC, and ongoing employee education to mitigate the risks associated with email-based cyber-attacks.
  3. Implement Robust Access Controls: Limit access to sensitive patient information to only those employees who require it to perform their job duties. Implement role-based access controls (RBAC) to ensure that each staff member has access only to the information necessary for their specific role.
  4. Regular Software Updates and Patch Management: Ensure that all software systems, including radiology information systems (RIS), electronic health records (EHR) systems, and practice management (PM) software, are kept up to date with the latest security patches and updates. This applies to all of your desktop operating systems such as Microsoft Windows and MAC OS, and applications such as Microsoft Office products, email clients, etc.  Vulnerabilities in outdated software are often exploited by cyber attackers, so timely patch management is crucial.
  5. Encrypt Data: Encrypting sensitive patient data both at rest and in transit adds an extra layer of protection against unauthorized access. Implement encryption protocols for data stored on servers, workstations, and mobile devices, as well as data transmitted between systems.
  6. Secure Network Infrastructure: Protect your practice’s network with robust firewalls, intrusion detection systems (IDS), and intrusion prevention systems (IPS) to monitor and block suspicious network traffic. Implement strong network segmentation to isolate sensitive data and limit the spread of any potential breaches.
  7. Backup and Disaster Recovery Plans: Regularly backup all critical data and ensure that backups are stored securely and offline to prevent them from being compromised in the event of a cyber-attack. Develop and test a comprehensive disaster recovery plan to minimize downtime and data loss in the event of a breach or system failure.
  8. Conduct Regular Security Audits and Risk Assessments: Regularly assess your practice’s security posture through comprehensive security audits and risk assessments. Identify and address any vulnerabilities or weaknesses in your systems and processes to proactively mitigate potential security risks.
  9. Incident Response Plan: Develop a detailed incident response plan outlining the steps to be taken in the event of a cyber-attack or data breach. Assign roles and responsibilities to staff members, establish communication protocols, and define procedures for containing, investigating, and remedying security incidents.
  10. Third-Party Vendor Management: If your practice utilizes third-party vendors for services such as cloud hosting or medical device integration, ensure that they adhere to strict security standards and protocols. Conduct due diligence assessments and require vendors to demonstrate compliance with industry regulations and best practices.
  11. Stay Informed and Adapt: The cybersecurity landscape is constantly evolving, with new threats emerging regularly. Stay informed about the latest cybersecurity trends, threats, and best practices through industry publications, conferences, and training programs. Continuously reassess and adapt your cybersecurity strategies to stay one step ahead of potential attackers.

By implementing these best practices, radiology and interventional specialist practices can significantly reduce their risk of falling victim to cyber-attacks and safeguard the confidentiality, integrity, and availability of patient data. Prioritizing cybersecurity not only protects patients and their sensitive information but also ensures the continued trust and reputation of the medical practice within the community.

For information on StreamlineMD recommendations for your radiology and interventional practice IT equipment, infrastructure, and security, please see: StreamlineMD Practice IT Infrastructure Guide.

Share the Post:

Related Resources

Become a Great Radiology & Interventional Radiology Boss: A Simple (But Not Always Easy) Guide (Part 2)

In every thriving company, there’s usually a great boss behind the scenes; someone who leads with purpose, manages with clarity, and creates a workplace where accountability and engagement go hand-in-hand. In the fast-paced world of Radiology & Interventional Radiology practices, that often means building and leading multidisciplinary teams of physicians, APPs, nurses, technologists, and administrators towards a shared goal of sustainable, compliant, and compassionate patient care.

Read More

Notice

Cyber Incident Update – 9/28/25 at 6:00 pm EST:

StreamlineMD applications are up and live!

Access Client Portal Here

We are pleased to inform you that, following clearance from our cybersecurity experts, client access to our system has been restored. You may begin accessing the system starting at 6:00 PM EST today, Sunday, September 28, 2025.

Please note that while core functionality is fully restored, the following features are currently unavailable as we continue working to bring all components back online:

1. SMD Mobile App (viewing PDF chart)
2. Patient Portal
3. RxPhoto (inside the EHR)

We are working to restore these remaining services as quickly and securely as possible.

We will continue to monitor system performance closely and will provide updates as additional components become available.

If you experience any issues or require support, please contact our support team directly at 330-564-2641.

Thank you once again for your continued patience, understanding, and trust.

Cyber Incident Update – 9/28/25 at 2:00 pm EST:

Following our scheduled call with the cybersecurity team earlier today, we have been advised that additional security measures must be implemented before client access can be restored. Specifically, changes to our VPN configuration are required to ensure a more secure connection environment.

Our internal teams are actively working on these adjustments and will move as quickly and carefully as possible to complete the necessary changes.

Our next update will be at 4:00 PM EST.

Cyber Incident Update – 9/28/25 at 12:00 pm EST:

We are pleased to share that our internal teams currently have access to the system environment. In the interim, if needed, we are able to assist by running your patient appointment schedules for the week. Please contact our support team or email at smdhelpdesk@prcmedicalllc.zohosupport.com if you require this service.

We are scheduled to meet with our cybersecurity team at 1:00 PM EST today to review final clearance for restoring client access. We will provide another update following that discussion.

We appreciate your continued patience and partnership as we work to bring services back online safely and securely.

Cyber Incident Update – 9/27/25 at 10:00 pm EST:

We are pleased to report that our routine nightly processes have completed successfully, and the system environment remains stable and fully operational.

At this stage, we are awaiting final clearance from our cybersecurity partner before restoring client access.

However, our partner informed us that they need more time and so this clearance will not be available until after 1:00 PM EST tomorrow, Sunday, September 28, 2025.

Thank you for your patience while we maintain the highest standards of security and system integrity. 

Cyber Incident Update – 9/27/25 at 7:00 pm EST:

We are continuing to move forward with final preparations for restoring system access. Our internal teams have completed their validation processes, and the environment remains fully operational.

At this time, we are running our routine nightly processes to further confirm system stability and readiness. We continue to await final clearance from our cybersecurity experts to bring services fully back online.

We remain optimistic that systems will be accessible to clients by tomorrow morning, Sunday, September 29, 2025, at 7:00 AM EST.

As always, we are taking every measure to ensure a secure and controlled restoration.

Thank you again for your continued patience and support. Our next update will be provided by 10:00 PM EST.

Cyber Incident Update – 9/27/25 at 11:00 am EST:

We are pleased to share that our team has gained access to the system environment and is actively conducting testing—an important step toward the full restoration of services.

As part of this process, we have completed testing of the Practice Management (PM) and Coding software and are pleased to report that no issues have been identified with the software. Testing will continue across all system components to ensure overall stability and reliability.

Our teams will continue working throughout the day to validate all aspects of the system before bringing it back online.

We are deeply grateful for your continued patience, support, and trust as we proceed with restoration in a safe and controlled manner.

We will provide another update at 2:00 pm EST.

Cyber Incident Update – 9/26/25 at 7:00 pm EST:

We are pleased to share that our team is now gaining access to the system environment and actively conducting testing. This is an important step toward full restoration of services.

We again want to reassure you that there is no evidence of any compromise of Protected Health Information (PHI) or damage to our systems.

Our teams will continue to work throughout the evening and into the weekend to validate all aspects of the system before bringing it back online.

Thank you for your continued patience, support, and trust as we move forward with restoration in a safe and controlled manner.

We will provide another update at 10:00 am EST on Saturday, September 27, 2025.

Cyber Incident Update – 9/26/25 at 3:00 pm EST:

We continue to make steady progress in our restoration efforts. At this time, 95% of servers have been cleared; however, they remain behind protective firewalls as we work closely with our team of experts toward full restoration.

The StreamlineMD systems will remain unavailable for the rest of today, Friday, September 26, 2025. Our teams will begin comprehensive testing of all aspects of the system as soon as possible, likely this evening and over the weekend.

Importantly, there is no evidence of any compromise of Protected Health Information (PHI) or damage to our systems.

We truly appreciate your support and understanding during this process. You are important to us, and we remain committed to restoring services safely and securely.

We will provide another update at 6:00 pm EST.

Cyber Incident Update – 9/26/25 at 2:00 pm EST:

We continue to work diligently this afternoon with our cybersecurity team and are making steady progress.   

We anticipate the StreamlineMD systems will remain inaccessible for the remainder of today, Friday, September 26, 2025.  

We will provide another update at 6:00 pm EST.

We appreciate your continued patience and understanding as we work to restore services in a secure and controlled manner.

Cyber Incident Update – 9/26/25 at 11:00 am EST:

We continue to work throughout the day with our cybersecurity team and continue to make progress.  

We anticipate the StreamlineMD systems will not be accessible before 3:00 pm EST on Friday, September 26, 2025

We will provide another update at 2:00 pm EST.

We appreciate your continued patience and understanding as we work to restore services in a secure and controlled manner.

Cyber Incident Update – 9/26/25 at 09:00 am EST:

We continue to work this morning with our cybersecurity team and continue to make progress.   

We still don’t anticipate StreamlineMD systems to be fully operational before 12:00 pm EST on Friday, September 26, 2025.  

We will provide another update at 12:00 pm EST.

We appreciate your continued patience and understanding as we work to restore services in a secure and controlled manner.

Cyber Incident Update – 9/26/25 at 07:00 am EST:

We have continued to work through the night with our cybersecurity team and continue to make progress.  

We will continue restoring servers to service and testing internally. 

We still don’t anticipate StreamlineMD systems to be fully operational before 12:00 pm EST on Friday, September 26, 2025. 

We will provide another update at 9:00 am EST.

We appreciate your continued patience and understanding as we work to restore services in a secure and controlled manner.

Cyber Incident Update – 9/25/25 at 11:00 pm EST:

So far, we are making great progress, and our systems are internally coming back online. At this time, there is no evidence of system damage or PHI compromise.

Throughout the night, we will continue restoring servers to service and testing internally.

We don’t anticipate StreamlineMD systems to be fully operational before 12:00 pm EST on Friday, September 26, 2025.

We will provide another update on Friday, September 26, at 6:00 am EST


Cyber Incident Update –9/25/25 at 7:00 pm EST:

We are currently in the process of restoring our servers and anticipate determining a timeline for resuming full operations by 10:00 PM EST this evening, September 25, 2025.

Our team continues to work diligently and in close coordination with our security partners in response to the cybersecurity incident that occurred during the overnight hours of September 24, 2025. As a precaution, our systems remain offline to prevent any potential data compromise. We continue to follow our established cybersecurity protocols to ensure the protection and integrity of your data.

We will provide our next update by 10:00 PM EST today.

We appreciate your continued patience and understanding as we work to bring our systems back online safely.

Incident Update – 9/25/25 at 12:00 pm EST:

StreamlineMD is currently working closely with our security team to address a cybersecurity incident that occurred during the overnight hours of September 24, 2025. As a precautionary measure, we proactively shut down our systems to prevent any potential data compromise.

Our team is actively following established cybersecurity protocols to ensure the continued protection of your data. At this time, the software will remain inaccessible for the remainder of the day, September 25, 2025.

We understand the impact this may have on your operations and sincerely appreciate your patience and understanding. We are committed to providing updates as frequently as possible and will keep you informed of our progress.

StreamlineMD is experiencing a cyber incident

Our security software detected malicious behavior and our team of internal and external experts are working to resolve the issue. The security team has made it clear that we need to shut down our services altogether, pending a more detailed analysis.