Healthcare Information Security

Health IT Security and HIPAA News

2016 Healthcare Data Breaches Largely From Employee Error

by

While the business sector led the way in reported data breaches for 2016, healthcare came in second by accounting for 34.5 percent of overall reported breaches, according to research from the Identity Theft Resource Center (ITRC) and CyberScout....

DHS Cyber Incident Response Plan Focuses on Infrastructure Risk

by

The Department of Homeland Security released a refreshed version of its National Cyber Incident Response Plan (NCIRP), with a strong focus on how the US can react to cybersecurity threats to critical infrastructure. The NCIRP as previously published...

Patient Privacy Addressed in Recent HHS Confidentiality Rule

by

The Confidentiality of Alcohol and Drug Abuse Patient Records regulations were recently updated and modernized, specifically addressing patient privacy concerns for individuals seeking treatment for a substance abuse disorder. The changes were...

Delaware Health Data Breach Potentially Impacts 19K

by

At Highmark Blue Cross Blue Shield in Delaware, two subcontractors suffered a breach leaving 16 self-insured customers and 19,000 Highmark members vulnerable to a potential attack. The incident came to light January 13, 2017 after the Delaware...

$2.2M OCR HIPAA Settlement Highlights ePHI Safeguard Need

by

The Department of Health and Human Services (HHS) Office for Civil Rights (OCR) recently announced a HIPAA settlement stemming from allegations of a lack of ePHI safeguards. MAPFRE Life Insurance Company of Puerto Rico (MAPFRE) agreed to the...

NY Clarifies Minor Patient Data Access, Maintains Security

by

Health data security is often a top concern with patient data access, especially as the push for interoperability continues and covered entities continue to utilize electronic devices. Ambiguity can make this process more difficult, and both...

Focusing on Audit Controls to Maintain PHI Security

by

Reviewing and securing audit trails, while also ensuring the proper tools to collect, monitor, and review those audit trails are in place are key audit control considerations for covered entities and business associates, according to the Office...

Protecting Your Healthcare Brand by Investing in Data Security

by

The modern trends around digitization and cloud have absolutely catapulted cybersecurity into the forefront of concerns for healthcare admins and IT decision makers. A recent Ponemon study, analyzing the cost of data breaches, found that the...

Utilizing Healthcare Authentication for Stronger Data Security

by

Finding the right balance between security and convenience is often tricky for healthcare providers, especially as technology continues to quickly evolve. Implementing stronger access controls and healthcare authentication options can help ensure...

Mobile Security Concerns Continue to Nag Health IT Leaders

by

Healthcare IT decision makers may see the value in implementing mobile options, such as BYOD and mobile device management (MDM) solutions, but there are still mobile security concerns, recent research shows. More than one-quarter of IT decision...

Health Data Privacy Concerns Not Hindrance for PHI Sharing

by

With more providers implementing EHRs and working toward interoperability, it is not uncommon for individuals to have health data privacy concerns with their personal information in how it is used and potentially shared. However, recent research...

FDA Finds Potential Cybersecurity Issues in St. Jude Devices

by

Certain St. Jude Medical implantable cardiac devices were found to have cybersecurity issues, according to recent findings from the Food and Drug Administration (FDA). Pacemakers, defibrillators, and resynchronization devices help patients with...

VA Senator Violates HIPAA in Sharing Patient Information

by

A Virginia State Senator is under fire after an alleged HIPAA breach led to an investigation into unlawful use of patient information. An article by the Richmond-Times Dispatch reported Senator Siobhan S. Dunnavant, an Henrico County physician,...

ONC, OCR Fact Sheet Discusses HIPAA Health Data Exchange

by

In an effort to answer questions over how oversight agencies can receive information in health data exchange, the Office of the National Coordinator (ONC) and Office for Civil Rights (OCR) released a fact sheet discussing how HIPAA allows such...

NIST Releases Updated Draft Version of Cybersecurity Framework

by

The National Institute of Standards and Technology (NIST) recently released an updated draft version of its Cybersecurity Framework, with incorporated comments from the December 2015 Request for Information and comments from Cybersecurity Framework...

OCR Clarifies PHI Disclosure Guidance in HIPAA Privacy Rule

by

Partially due to legal confusion following the 2016 Orlando nightclub shooting, the Office for Civil Rights (OCR) has released an FAQ clarifying certain aspects of PHI disclosure policies with patients’ loved ones under the HIPAA Privacy...

LabMD Files Review Petition Against Data Breach Allegations

by

LabMD filed a petition for review on December 27, 2016, following a U.S. federal appeals court granting a stay of an FTC order in the continuing battle between the two parties over data breach allegations. The U.S. Court of Appeals for the 11th...

Breach Notification Center of Presence Health HIPAA Settlement

by

Healthcare network Presence Health recently agreed to a $475,000 OCR HIPAA settlement following a reported data breach and a subsequent delayed breach notification process. Presence submitted a breach notification report to OCR on January 31,...

Anthem Data Breach Reportedly Caused by Foreign Nation Attack

by

The large-scale cybersecurity attack on Anthem in 2015 that led to 78.8 million consumer records potentially being exposed in a data breach was caused by a foreign nation attacker, according to the California Department of Insurance. An investigation...

Healthcare Ransomware Attacks Fuel Protection Market Growth

by

As healthcare continues to digitize medical records and increase its use of ePHI, it is also making it a larger target for ransomware attacks, according to recent research. The healthcare industry is also facing more ransomware attacks than any...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks