"secure servers" from Equifax, major retailers, to the Pentagon are continuously being hacked, so what would makes you think that Rx systems will not be hacked? The future is here, and it is looking grim.
Don't those require two separate validations with one being a password and the second being physical? As in biometric/RSA token?
Good question. But if they are sending fake eRxs, that's the most likely method. Actually cracking 256 bit encryption ain't happening.
This is correct on prescriber side; I have to enter a code from the app each time I rx a controlled substance
Call to verify?
So call and verify every control erx?
We’d be on the phone all day then if we had to call on each and every controlled script (unless there was a clear/valid reason to) 😭
That's what I mean if it looks suspicious.
I have to also enter a new password and a token pin that lasts 60 seconds in order to prescribe a controlled sub on my emr
We've got like, 3 layer security everywhere I work, often tied to an off-device key (phone, flash drive, or physical card). The ability to get around these systems would require more than just passwords, it would be quite sophisticated and require faking mutiple levels of authentication.
Wouldn't surprise me if some docs delegate sending prescriptions to their staff
And all still considerably more likely that cracking 256-bit encryption.
My staff doesn't have access to my phone or passwords. The second password and the token pin are unavailable to her as well. The token pin is a 60 second one on my phone only.
Not sure if security has been ramped up since then as it takes a lot for me to prescribe a controlled sub.
I know a pharmacist who recently got one at my old store
I've seen em up close and personal.
I received an obviously fake Oxy30 from a GI Doc out of NYC. All contact/location info on it was to a northern NJ "office" that didn't exist.
It’s most definitely happening. And no please we don’t want it to become huge news as that only invites more.
I am able to run a report to see what my controlled sub prescriptions are. It's required in my state. That way I know if someone who shouldnt be getting a sub is.
That's who mine was from! Very very nice lady. I was doing clinical **** that day but i still called to talk to her
And how often do you run it
Once a month
Ya… a lot of damage can be done in a month…
Yes
But how? I approve a push notification and on my employer phone. It's protected with my fingerprint. Only I have access to the phone. I get 25 seconds to approve the push notification. The phone has additional layers of encryption beyond the my fingerprint.
Pharmacists are good at picking this up. I'm a shrink so there's only a narrow range of meds that would be controlled I prescribe.
No clue. But it was clearly fake. Oxy30 #90 for a completely opioid naive patient that lived 20 miles from the prescriber, sent to a pharmacy 90 miles from the office and 70 from the patient.
How do we know prescribers aren't being paid to write these drugs?
Right but they should have checked the drivers license so we could prosecute. That's part of controlled sub regulations.
Sure you get paid. You got paid for the last visit and you'll get paid for the next visit. You can be unhappy with the level of renumeration, but you are getting paid. When a pharmacist turns away a phony prescription, they're losing that sale and likely future business from the fraudster.
It takes time. That time is not reimbursed. That costs us money.
So then y'all should just give the fraudsters the illegal script? Like the pharmacist I had who did that?
sunnysidepost.com
You could've stopped it if you checked the records a few times a day. Also, they never would've gotten the illegal script if you hadn't gotten hacked
