Healthcare Information Security

Health IT Security and HIPAA News

Research Data Privacy Regulations Updated in Final Federal Rule

by

A final rule strengthening protections for research participants, including areas of data privacy was recently issued by the Department of Health and Human Services (HHS) and other federal agencies. Current regulations, referred to as the “Common...

Appeals Court Vacates Horizon BCBS Data Breach Case

by

The previously dismissed data breach case against Horizon Blue Cross Blue Shield (BCBS) of New Jersey was recently revived, as the Court of Appeals for the Third Circuit vacated the dismissal and remands. The Court determined that the plaintiffs...

OIG Finds Slight Increase in Medicare Information Security Gaps

by

Evaluations of the Medicare administrative contractor (MAC) information security program found that the programs were adequate in scope sufficiency but still had an increase in security gaps from the previous year. The Office of Inspector General...

Prioritizing Data Privacy, Security in the Healthcare C-Suite

by

As healthcare IT continues to evolve, the C-suite is also expanding and becoming more intricate. Individuals in leadership positions need to keep data privacy and security issues top priorities, especially as healthcare remains a target for cyber...

2016 Healthcare Data Breaches Largely From Employee Error

by

While the business sector led the way in reported data breaches for 2016, healthcare came in second by accounting for 34.5 percent of overall reported breaches, according to research from the Identity Theft Resource Center (ITRC) and CyberScout....

DHS Cyber Incident Response Plan Focuses on Infrastructure Risk

by

The Department of Homeland Security released a refreshed version of its National Cyber Incident Response Plan (NCIRP), with a strong focus on how the US can react to cybersecurity threats to critical infrastructure. The NCIRP as previously published...

Patient Privacy Addressed in Recent HHS Confidentiality Rule

by

The Confidentiality of Alcohol and Drug Abuse Patient Records regulations were recently updated and modernized, specifically addressing patient privacy concerns for individuals seeking treatment for a substance abuse disorder. The changes were...

Delaware Health Data Breach Potentially Impacts 19K

by

At Highmark Blue Cross Blue Shield in Delaware, two subcontractors suffered a breach leaving 16 self-insured customers and 19,000 Highmark members vulnerable to a potential attack. The incident came to light January 13, 2017 after the Delaware...

$2.2M OCR HIPAA Settlement Highlights ePHI Safeguard Need

by

The Department of Health and Human Services (HHS) Office for Civil Rights (OCR) recently announced a HIPAA settlement stemming from allegations of a lack of ePHI safeguards. MAPFRE Life Insurance Company of Puerto Rico (MAPFRE) agreed to the...

NY Clarifies Minor Patient Data Access, Maintains Security

by

Health data security is often a top concern with patient data access, especially as the push for interoperability continues and covered entities continue to utilize electronic devices. Ambiguity can make this process more difficult, and both...

Focusing on Audit Controls to Maintain PHI Security

by

Reviewing and securing audit trails, while also ensuring the proper tools to collect, monitor, and review those audit trails are in place are key audit control considerations for covered entities and business associates, according to the Office...

Protecting Your Healthcare Brand by Investing in Data Security

by

The modern trends around digitization and cloud have absolutely catapulted cybersecurity into the forefront of concerns for healthcare admins and IT decision makers. A recent Ponemon study, analyzing the cost of data breaches, found that the...

Utilizing Healthcare Authentication for Stronger Data Security

by

Finding the right balance between security and convenience is often tricky for healthcare providers, especially as technology continues to quickly evolve. Implementing stronger access controls and healthcare authentication options can help ensure...

Mobile Security Concerns Continue to Nag Health IT Leaders

by

Healthcare IT decision makers may see the value in implementing mobile options, such as BYOD and mobile device management (MDM) solutions, but there are still mobile security concerns, recent research shows. More than one-quarter of IT decision...

Health Data Privacy Concerns Not Hindrance for PHI Sharing

by

With more providers implementing EHRs and working toward interoperability, it is not uncommon for individuals to have health data privacy concerns with their personal information in how it is used and potentially shared. However, recent research...

FDA Finds Potential Cybersecurity Issues in St. Jude Devices

by

Certain St. Jude Medical implantable cardiac devices were found to have cybersecurity issues, according to recent findings from the Food and Drug Administration (FDA). Pacemakers, defibrillators, and resynchronization devices help patients with...

VA Senator Violates HIPAA in Sharing Patient Information

by

A Virginia State Senator is under fire after an alleged HIPAA breach led to an investigation into unlawful use of patient information. An article by the Richmond-Times Dispatch reported Senator Siobhan S. Dunnavant, an Henrico County physician,...

ONC, OCR Fact Sheet Discusses HIPAA Health Data Exchange

by

In an effort to answer questions over how oversight agencies can receive information in health data exchange, the Office of the National Coordinator (ONC) and Office for Civil Rights (OCR) released a fact sheet discussing how HIPAA allows such...

NIST Releases Updated Draft Version of Cybersecurity Framework

by

The National Institute of Standards and Technology (NIST) recently released an updated draft version of its Cybersecurity Framework, with incorporated comments from the December 2015 Request for Information and comments from Cybersecurity Framework...

OCR Clarifies PHI Disclosure Guidance in HIPAA Privacy Rule

by

Partially due to legal confusion following the 2016 Orlando nightclub shooting, the Office for Civil Rights (OCR) has released an FAQ clarifying certain aspects of PHI disclosure policies with patients’ loved ones under the HIPAA Privacy...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks