Healthcare Information Security

Health IT Security and HIPAA News

Healthcare Ransomware Leads Other Industries by Large Margin


As the healthcare industry continues to implement new technologies, there are more options for unauthorized third-party attackers to try and infiltrate networks in order to access sensitive data, such as patient PHI. However, a recent study shows...

Utilizing a Secure Healthcare Cloud in Your Organization


There was a period in time when cloud computing and many of its associated services were pretty much off limits to organizations bound by compliance, regulations, or even strict data management policies. Today, that conversation is significantly...

Most Hospitals Consider EHR Security in Contingency Planning


Nearly two-thirds of hospitals reported that EHR security is considered through their application of  HIPAA rules as they implement contingency planning, the Office of Inspector General found. Furthermore, when it comes to EHR contingency...

HHS Funding to Combat Rising Healthcare Cybersecurity Issues


In an effort to better meet the current healthcare cybersecurity threats, the Department of Health and Human Services’ (HHS) Office of the National Coordinator for Health Information Technology (ONC) and the Assistant Secretary for Preparedness...

Latest Round of OCR HIPAA Audits Not a Reason for Panic


The second round of the OCR HIPAA audits is officially underway, with desk audits being announced in July 2016. Notification letters were sent out to 167 covered entities on Monday, July 11, that they had been selected for the desk audit portion...

UMMC Agrees to $2.75M HIPAA Settlement after Multiple Violations


Following numerous reports of alleged HIPAA violations that led to a healthcare data breach, the University of Mississippi Medical Center (UMMC) recently agreed to a $2.75 million HIPAA settlement. The Office for Civil Rights (OCR) explained...

What Does Increased Patient Access Mean for HIPAA Compliance?


More individuals than ever before now have electronic access to their own health information, according to a recent report from the American Hospital Association (AHA). However, organizations are required to offer patient access as part of their...

Bizmatics Healthcare Data Breach Affects Another 22K Patients


North Ottowa Medical Group has identified a hacking incident at Bizmatics, an EHR vendor, as the source of a potential healthcare data breach, according to a press release. The Michigan-based medical group was notified by Bizmatics that servers...

IT Consumerization and its Impact on Healthcare Data Security


As you walk through today’s modern hospitals and healthcare environments you’ll notice a very obvious trend, and one that will affect healthcare data security. Healthcare organizations are revolutionizing patient and health delivery...

Using Disaster Recovery Planning for Healthcare Data Security


There are numerous scenarios where a covered entity may need to implement a disaster recovery plan, such as a natural disaster or even a ransomware attack. Healthcare data security must remain a top priority in any such situation, which is why...

How External Threats May Impact Health Data Security Measures


Ransomware threats and other recent cybersecurity threats show that health data security measures must be comprehensive and current. However, a recent study shows that organizations might be lacking the necessary resources to mitigate potential...

ONC Report Highlights PHI Security Gaps in non-HIPAA Entities


The increase in certain technologies that collect and potentially share individuals’ health information, such as wearables and fitness trackers, could create issues when it comes to PHI security, according to the Office of the National...

Maryland Court Dismisses CareFirst Data Breach Lawsuit


Plaintiffs in a class action lawsuit filed after the CareFirst data breach from last year failed to demonstrate sufficient standing, according to a Maryland district court. Pamela Chambliss and Scott Adamson claimed in their case against CareFirst...

Secure Texting Ban Reinstated, Commission Calls for Guidance


The previously announced secure texting ban removal by the Joint Commission on Accreditation of Healthcare (JCAHO) has since been delayed, according to the Commission’s online June newsletter. More guidance is needed “to ensure a...

Assessing Vendor Risk for Stronger Health Data Security


Whether a healthcare organization hires vendors to process customer payments, store HR data in the cloud or run the IT help desk, you extend your overall cyber risk environment to that of your third party providers. Too often, healthcare decision-makers...

HIPAA Privacy Rules Considered in Recent Mental Health Bill


The House of Representatives passed the Helping Families in Mental Health Crisis Act (H.R. 2646) last week, which has a provision stating that more clarity is needed around existing HIPAA privacy rules. It is important to reduce any confusion...

OHSU Health Data Breaches Lead to $2.7M OCR Agreement


Oregon Health and Science University (OHSU) recently signed a resolution agreement with the Office for Civil Rights (OCR) following two health data breaches it suffered in 2013. OHSU will pay $2.7 million as part of the agreement, and will also...

Planned Parenthood Health Data Breach Affects 2K Patients


Planned Parenthood of the Heartland faces a possible healthcare data breach affecting 2,506 patients after paper records were exposed during the closure of a healthcare center in Iowa, according to a company press release. Patients at the Dubuque...

Health Data Privacy Discussed in ONC Blockchain Proposal


The Office of the National Coordinator for Health Information Technology (ONC) and the National Institute of Standards and Technology (NIST) submitted an “Ideation Challenge” proposal for the potential benefits of blockchain technology...

Thoma Bravo Set to Acquire Imprivata for $544M


An affiliate of the private equity firm Thoma Bravo will acquire Imprivata for $544 million in cash. Thoma Bravo also has healthcare IT investments in Global Healthcare Exchange, Hyland Software, Mediware, and SRS Software. Imprivata has several...


SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
Data Breaches

Our privacy policy

no, thanks