Gair, Gair, Conason, Rubinowitz, Bloom, Hershenhorn, Steigman & Mackauf is a New York Plaintiff's personal injury law firm specializing in automobile accidents, construction accidents, medical malpractice, products liability, police misconduct and all types of New York personal injury litigation.

Articles Posted in Medical Malpractice

Published on:

hospital patientMore than 150 models of medical devices manufactured by more than 100 manufacturers and equipped with PTC Axeda agent and Axeda Desktop Server  have dangerous cybersecurity vulnerabilities that could potentially harm patients. The Axeda agent and Axeda Desktop server  sold by PTC are  components allowing one or more people to view and operate the same remote desktop, through the Internet. However,  it was recently found that hard-coded credentials were used in these components making them particularly vulnerable to cyber attacks. Hard code credential  is a practice used by software developers in which authentication data such as password are embedded directly in the source code. This practice was identified 9 years ago as a significant cybersecurity threat and is considered outdated and dangerous. It is particularly concerning that medtech vendor PT  is still selling products using this technology, especially products providing remote support functionality which are among the most targeted by hackers.  Hard code credential vulnerabilities, if exploited, allow hackers to fully access the system, execute remote code, change the configuration, read or save changes directly to files and folders on the user’s device, access user’s login information and flood the targeted device or network with traffic until the target cannot respond or simply crashes, preventing access for legitimate users. Designing medical devices containing such outdated and dangerous components is negligence that can cause injury or death to patients.

Defective medical devices with cybersecurity flaws are considered the number one health technology hazards in 2022 by the ECRI Institute. The FDA issued a cybersecurity alert and the Cybersecurity and Infrastructure Security Agency issued an advisory with a detailed description of the vulnerabilities,  recommendations to mitigate them and a list of the main manufacturers  using Axeda agent and Axeda Desktop servers in some of their products. Among them are Accuracy, Agilent, Bayer, BD, Elektra, GE, Roche Diagnostic, Smith Medical and Varian. These manufacturers have all released their own information in regards to affected products.

Read more in Medtech Dive

 

Published on:

OxyContinThe lawyers for Dr Xiulu Ruan and Dr Shakeel Kahn will argue tomorrow before the Supreme Court of the United States that the criminal standard that physicians faced is not applied consistently among the federal circuits. Dr Xiulu Ruan was one of the largest prescribers of quick-release fentanyl drugs in the US and he is serving a 21-year sentence in federal prison. Dr Shakeel Kahn is serving a 25-year sentence after running pill mills in Arizona and Wyoming.  Their lawyers want their convictions to be overturned but the probability that it occurs is extremely low. However what the lawyers want is that the Supreme Court define a uniform standard that would allows doctors to raise a “good faith” defense and as a result a jury would be able to consider if a doctor was using his or her best medical judgement.

For doctors and patients all over the country the case is not about judging if Ruan and Kahn were bad actors among doctors and committed medical malpractice  but about good doctors who are risking criminal investigation because of  a difficult decision they made.  When the opioids started to flood the market 20 years ago, excessive prescribing was common. In order to curb the actual opioid crisis, authorities have been investigating prescription habits intensively to the point that doctors are now scared to prescribe them to their patients even though they need them.  People coming out of surgeries are being left to unnecessarily suffer because hospitals have implemented drastic guidelines and long term chronic pain patients can’t find a doctor anymore and have to turn to the illegal market.  As prescriptions for opioids fell down, the opioid deaths hit a record high last year in the US with most deaths being related to illegally obtained opioids.  Recent studies indicate this is not a coincidence as long term patients that have been cut from their doctors find themselves in the emergency room because they were poisoned by illegal drugs or committed suicide (See New England Journal of Medicine).

A recent article in the New York Time discuss this difficult issue extensively.

 

 

 

Published on:

Infusion pumps are at risk of cyber attacks75% of infusion pumps used by hospitals and other healthcare providers are at risk of being compromised by hackers and as a result can cause harm to patients or expose sensitive data.

Infusion pumps are some of the most commonly used medical devices and some big hospitals are managing thousands of these devices. A recent study by Palo Alto Networks’ Unit 42, looked at 200,000 infusion pumps manufactured by 7 different companies and being used by multiple hospitals and healthcare organizations that are all using IOT Security to monitor their medical devices.

Researchers found that an alarming number of these devices were highly vulnerable to cyber attacks with 40 known security gaps identified among the devices. Additionnally, 70 types of alert messages received from  these devices through the IOT security network where identified as messages related to security issues.  Most vulnerabilities identified were leakage of sensitive information and unauthorized access causing the device to become unresponsive.

Published on:

Medical malpractice lawyer Ben RubinowitzOur managing partner, Ben Rubinowitz, will be speaking about medical malpractice and what constitutes “Informed Consent” at the 46th Winter Urologic Forum, sponsored by Columbia University, University of California, Davis, and Vanderbilt University, that will take place from January 14th to 18th at the Manor Vail Lodge in Vail, Colorado.

This meeting will summarize for practicing urologists, urologic trainees, and other interested professionals, new concepts in diagnosis and treatment for conditions including local and advanced prostate, renal and bladder cancer, lower urinary tract symptoms and BPH, women’s health, overactive bladder, surgical treatment for stress incontinence, andrology and men’s health, stone disease and medical malpractice. At the completion of the meeting, urologists will have been exposed to new therapies, areas of controversy, methods to optimize patient care and maintain patient centricity of care delivery.

For more info or to register click here

 

 

Published on:

Hospital PatientMost medical devices used by hospitals are legacy devices that are still operating on Windows 7 that Microsoft no longer supports.  Manufactured at a time when cybersecurity was not a preoccupation, these devices can now easily be hacked and potentially be dangerous to patients. As a result, on top of safeguarding traditional IT assets, hospitals now have to figure out a way to secure tens of thousands of legacy devices from hundreds of manufacturers connected to their network.  It is a real headache for most hospitals and healthcare organizations as many of them do not even keep an inventory of their medical devices. According to a recent study only 36% of healthcare organizations know where their medical devices are.

While some devices that can cause fatal injuries, such as insuline pumps or pacemakers, are being actively monitored and recalled by the FDA, it is estimated that all other medical devices have an average of more than 6 vulnerabilities per device and that 40% of devices used by hospitals are at the end-of-life stage and do not have security patches or upgrades available.

Not surprisingly, FDA regulations in this field are lagging with the agency only saying both hospitals and manufacturers are responsible for protecting devices from cyber attacks. Hospitals are pointing fingers at manufacturers for not providing the necessary support and want the FDA to mandate lifetime support of medical devices by manufacturers.  So far, the further the FDA went was to publish post-market guidance for medtechs on what they should do to secure their products. This is not enough as hospitals find themselves dealing with thousands of devices that they are supposed not only to track but also patch to prevent cyberattacks. With the ongoing Covid19 crisis, hospitals are unable to handle this task and as a result they become increasingly vulnerable to cyberattacks that could injure or kill patients.

Published on:

Medical maplpractice attorney Ben RubinowitzThis past Saturday our managing partner Ben Rubinowitz lectured to urologists at the Societies for Pediatric Urology SPU2021 Pediatric Urology Fall Congress held in Miami, Florida.

Ben presented a dynamic talk as to the pitfalls of inadequate care and the resultant harm that comes to patients when doctors fail  to provide appropriate treatment. To reinforce his points, Ben cross examined doctors with regard to medical malpractice.  Ben’s talk and demonstration focused on testicular torsion cases and circumcision cases gone wrong. “I consider it an honor to be invited to speak at both the Mayo Clinic and at the Pediatric Urology Fall Congress,” said Ben Rubinowitz.  “ If we can prevent patients from being harmed we have all done something good — remember, we are all in this together — and no patient needs to suffer an injury that could have been prevented.”

For more than 25 years Ben has shared his expertise with physicians throughout the country.  This  program was attended by more than 300 urologists from across the country.

Published on:

hospital readmission can be negligenceExcessive patient readmissions is usually a sign of hospital negligence. Not only can it worsen the patient’s condition and extend recovery time but it also increases the patient’s bill.

In order to curb readmission rates and make sure hospitals pay more attention to patients after their departure, the Hospital Readmission Program (HRRP) was created in 2010 as part of the Affordable Care Act. It took effect in October 2012 and since then, bad players with high readmission rates are being penalized by Medicare and get their payment for each of their Medicare patients reduced by up to 3%.

A total of 3,046 hospitals in the country are included in this program while hospitals treating children, veterans and psychiatric  patients are excluded.

Published on:

Best Law Firms - Standard BadgeOur New York Personal Injury Law Firm is proud to announce that Gair, Gair, Conason, Rubinowitz, Bloom, Hershenhorn, Steigman & Mackauf has been named a Tier 1 firm in New York City for 5 practices by U.S. News – Best Lawyers® “Best Law Firms” 2022. These practices are:

  • Medical Malpractice Law – Plaintiffs
  • Personal Injury Litigation – Plaintiffs
Published on:

A physician committed serious medical malpractice and crimes by  hooking up chronically ill female patients with heavy doses of opioids and abusing them sexually. The abuse has been going on for 15 years according to 22 pending lawsuits, hospitals ignored patients complains and failed to inform future employers about these complains.

63 year old Ricardo Cruciani would develop personal relationships with his victims. He would prescribe them significant amounts of opioids and required “in person” appointments to get a refill. When the patient would arrive in his office he would ask for sexual favors in exchange for their prescription. If the patient refused, Cruciani would deny their refill.

This sordid scenario has been going on for at least 15 years in multiple States as during his career, Cruciani worked at Mount Sinai Beth Israel in Union Square, at the Capital Institute for Neurosciences in Hopewell Township, N.J and at Drexel University in Philadelphia.  He lost his medical license after he was found guilty of indecent exposure and groping 7 patients in 2017 in Philadelphia. At that time he did not go to jail but he was registered as a low-level sex offender.

Published on:

FDA-logoAfter a recent study pointed fingers at the mismanagement of medical device recall by the FDA (see previous blog),  further investigations are confirming an outdated and broken system that leaves patients at risk of serious injury and death as unaware doctors continue to use defective devices on their patients.

A recent example of this outdated process is the recall of a sleep apnea ventilator device manufactured by Philips. It is not clear so far as to when exactly, Philips executives found out that the foam used to dampen the noise of the machine was breaking down and could potentially be inhaled or ingested by patients, exposing them to carcinogenic or toxic effects. However, the company announced publicly, on April 26th, while reporting Q1 earnings that it was creating a provision of 250 million Euros to cover costs related to possible risks to users in some sleep and respiratory care machines. While the company had probably already identified that the defective devices were the ones manufactured between April 2007 and April 2021, it waited almost two other months to initiate a recall and warn consumers of potential carcinogenic and toxic effects.  After the issuance of the recall, the FDA issued a safety communication on June 30. It took until July 22nd for the FDA to classify the recall as class I event and publish a public notification.

Does this mean that all patients have been contacted and had their ventilator changed? Not at all. In the actual process, the customers of the manufacturer, such as the hospitals, the providers, the retailers or the distributors are in charged of contacting the patients and they usually don’t do it.  Instead, doctors wait for the patients to come in with symptoms.