May 17, 2020

Cerner and Lumeris partner to deliver value-based care

Digital health
Health technology
Catherine Sturman
3 min
Partnering with Salesforce earlier this year to extend its population health, clinical and administration portfolio, Cerner has now partnered with value...

Partnering with Salesforce earlier this year to extend its population health, clinical and administration portfolio, Cerner has now partnered with value-based healthcare services operator Lumeris.

Lumeris aligns providers and payers across populations with technologies, processes, behaviors and information to achieve high-quality, cost-effective care with satisfied consumers and engaged physicians. The company has recently also entered a new partnership with BayCare Health System to support its new Medicare Advantage Plans.

Cerner and Lumeris’ 10-year collaboration will enable the duo to further eradicate inefficiencies within the current healthcare system, from inefficient data sharing complex reimbursement processes.

Combining Cerner and Lumeris technology and services to streamline redundant processes that burden the patient and provider, Maestro Advantage (MA) has been developed to help health systems succeed and enable patients to receive enhanced access to primary care and a level of service that was previously only delivered via expensive concierge medicine programmes.

“The United States healthcare system’s transition to value-based care has been impeded by disjointed technology, cumbersome processes, misaligned incentives and inadequate management of clinical and financial outcomes,” said John Doerr, Lumeris board member and chairman of Kleiner Perkins.

Maestro Advantage lowers the barriers to data transparency and sharing and empowers physicians and health systems. However, we know technology alone is not sufficient. MA is an innovative model with supporting processes and expertise to aid long-term success in value-based care arrangements.”

See also

Brent Shafer, chairman and CEO, Cerner added: “By using data to reduce or eliminate unnecessary costs and ineffective transitions of care, providing doctors and their patients a more complete view of their medical history and a health plan that consistently receives high quality scores from CMS, this collaboration with Lumeris aligns well with our mission and illustrates the potential of Cerner technology to positively impact health care economics and outcomes in deeper, more impactful ways than before.”

By integrating actionable data and insights with provider workflows, MA uniquely leverages existing investment in digitised data and processes. It has been designed so providers can more effectively assess risk and create interventions and better maximise outcomes for patients enrolled in value-based arrangements, such as PSHPs and MA plans and will work across any EHR in the network.

According to Healthcare Dive, over 20,000mn members enrolled in MA plans in 2016, a number which has risen significantly since this time.

MA creates a patient-centric health care delivery network. Prevention and wellness become the top priority rather than treatment and ‘sick care,’” said Mike Long, chairman and CEO, Lumeris.

“Physicians and care teams will get access to timely data and easy-to-use, actionable insights at the point of care. Combined with a proven, value-based accountable primary care model, physicians can truly advocate for their patients, ensuring they receive better care and are more satisfied on their health care journey.”

Lumeris will adopt Cerner’s HealtheIntent platform and combine its clinical methodology and advanced analytics to help drive better patient outcomes and lower costs of care. Both parties will then work to identify health systems best positioned to succeed with the offering.

The move also follows on from Cerner’s decision to enable Abu Dhabi based Mubadala Healthcare to harness its integrated electronic health record technology (EHR), signalling its leading position within the market.

Share article

Jun 17, 2021

Peloton vulnerable to cyber attacks, McAfee research finds

2 min
​​​​​​​Software security experts McAfee discovered exercise bikes by Peloton are vulnerable to cyber attacks, which the company have since resolved 

Peloton, the popular exercise bikes, were found to be vulnerable to cyber attacks in the latest research from McAfee. 

Peloton is a brand of electric bikes that combines high end exercise equipment with cutting-edge technology. Its products use wi fi to connect to a large tablet that interfaces with the components of the exercise device, and provides an easy way for physical activity enthusiasts to attend virtual workout classes over the internet several times a week.

Peloton has garnered attention recently around the privacy and security of its products. So McAfee decided to take a look for themselves and purchased a Peloton Bike+.

The problem

Researchers looked at the Android devices and uncovered a vulnerability  that could allow an attacker with either physical access to the Bike+ or access during any point in the supply chain to gain to hack into the bike’s tablet, including the camera, microphone and personal data. 

For the person using it there would be no indication the Bike+ has been tampered with, potentially putting Peloton’s 16.7 million users at risk.  

The flaw was found in the Android Verified Boot (AVB) process. McAfee researchers were able to bypass the Android Verified Boot process, which normally verifies all code and data before booting. They were then able to get the device to boot bypassing this step. 

This could potentially lead to the Android OS being compromised by an attacker who is physically present. Even worse, the attacker could boot up the Peloton with a modified credential to gain privileges, granting them access to the bike remotely. 

As the attacker never has to unlock the device to boot it up, there would be no trace of their access on the device. This type of attack could also happen at any point from construction to warehouse to delivery, by installing a backdoor into the Android tablet without the user ever knowing. 

The solution

Given the simplicity and criticality of the flaw, McAfee informed Peloton while auditing was ongoing. The vendor was sent full details,  and shortly after, Peloton confirmed the issue and released a fix for it. 

Further conversations between McAfee and  Peloton confirmed that this vulnerability had also been present on the Peloton Tread exercise equipment. 

Peloton’s Head of Global Information Security Adrian Stone, commented on the research: “This vulnerability reported by McAfee would require direct, physical access to a Peloton Bike+ or Tread. Like with any connected device in the home, if an attacker is able to gain physical access to it, additional physical controls and safeguards become increasingly important.

"To keep our members safe, we acted quickly and in coordination with McAfee. We pushed a mandatory update in early June and every device with the update installed is protected from this issue.”

Share article