Issue link: https://beckershealthcare.uberflip.com/i/692604
90 HEALTH IT Allscripts Achieves Record Q1 Bookings, Posts Revenue Increase By Akanksha Jayanthi F or the first quarter of 2016, health IT company Allscripts reported $252 million in bookings, a record level for a year's first quarter for the company, and a 7 percent increase over last year's $236 million. Additionally, Allscripts first-quarter revenue was $346 million, a 3 percent increase from the previous year's $335 million. The company posted a $2 million net income attributable to Allscripts stockholders, a turnaround from the previous year's first quarter $10 million loss. "Allscripts is off to a strong start for the year, executing a fifth consecutive quarter of record bookings," said Paul Black, CEO of Allscripts, in an earnings statement. "Additionally, all key financial metrics grew compared to the first quarter of 2015. Our financial position continually strengthens as we deliver innovative, high- value solutions to the market. As a result, clients are expanding the depth and breadth of their commitment to Allscripts as a critical long-term strategic partner in delivering world-class health services." n McKesson Revenue Climbs 4%, Profit Falls 2% in Q4 By Akanksha Jayanthi F or McKesson's fourth quarter of 2016, ended March 31, the health IT company reported a slight increase in revenue from the same quarter the previous year, but gross profit minimally decreased. The company's quarterly revenue totaled $46.68 billion, up 4 percent from the previous year's quarterly revenue of $44.93 billion. For the company's fiscal year 2016, which ended March 31, it reported $190.88 billion, up 7 percent from the previous fiscal year's total revenue of $179.04 billion. McKesson's quarterly profit, though, fell a slight 2 percent, from $2.92 billion last year to $2.85 billion this year. Profit for the year remained stagnant at $11.41 billion. "I am pleased with our fourth-quarter results, driven by solid execution across both our Distribution Solutions and Technology Solutions segments," John Hammergren, chairman and CEO of McKesson, said in an earnings statement. "Fiscal 2016 was a year of growth at McKesson, and I am encouraged by the many new and expanded customer relationships throughout our businesses." n Shared Credentials in Epic v. Tata Case: 'Every CIO and CISO's Nightmare' By Akanksha Jayanthi A Wisconsin jury ruled in favor of Verona, Wis.-based Epic in April in a lawsuit alleging Mumbai, India-based Tata Consultancy services stole trade secrets and confidential information to support its competing healthcare soware product. e federal judge awarded Epic $940 million in damages, $240 million in compensatory damages and $700 million in punitive damages in the suit against Tata. Tata plans to appeal the decision. At the center of the lawsuit is the unauthorized access to confidential information by Tata employees. Court documents indicate an employee of Mumbai, India-based Tata shared login credentials with others, who then accessed Epic's web portal is sharing of credentials is a growing worry for CIOs and security professionals, and the ease with which it happened elevates that concern. According to court documents, Tata employees working on an Epic project at a Portland, Ore.-based Kaiser Permanente facility allegedly inappropriately downloaded nearly 6,500 documents from Epic's UserWeb, a portal maintained by the EHR vendor containing product materials, updates and other related information regarding Epic's soware and its data model. Epic grants customers access to UserWeb, as well as third parties, including consultants, who can use the information to assist in implementation, integration and testing. Court documents indicate third-party consultants only can access a portion of UserWeb, and consultants typically have to sign a UserWeb Access Agreement that limits their use of information on the web portal. Tata employee Rajesh Gajaram had access to Epic's UserWeb portal, according to court documents, and he testified that he shared his login credentials with three other Tata employees. At least one of the three employees testified he downloaded documents form UserWeb and made them available to other team members. "is is basically every CIO and CISO's nightmare — unauthorized access to sensitive data and information by offshore contractors that are a direct or indirect part of their supply chain," Avivah Litan, vice president and distinguished analyst at Gartner, a technology research company, told e Wall Street Journal. e risk of sharing credentials or having weak login information is high in healthcare, as are the stakes. e Anthem breach reported February 2015 that compromised the personal records of 78.8 million customers is believed to have stemmed from weak login security where hackers accessed an administrator's login credentials and were able to enter the computer. at breach is the largest healthcare-related breach reported to the HHS Office for Civil Rights' breach database. Human error is oen deemed a main risk in cybersecurity, as a system is only as strong as its weakest link, be it an employee who clicks on a phishing link or someone who writes login credentials on a sticky note and puts it on a computer monitor, for example. In a previous interview with Becker's Hospital Review, Mac McMillan, co-founder and CEO of healthcare security and privacy consulting firm CynergisTek, said the majority of a hospital's defenses are in the hands of the hospital staff, and training and education are critically important to safeguard as best as possible against threats. n