Healthcare Information Security

Health IT Security and HIPAA News

Preparing for an OCR HIPAA Risk Assessment Audit

by

While healthcare organizations should not panic over the idea of a potential HIPAA audit or risk assessment, they should ensure that their privacy and security measures are comprehensive and current. This will not only keep sensitive data, such...

Ransomware Attack Mitigation in Updated ONC SAFER Guide

by

Best practices for ransomware attack mitigation and prevention, along with general contingency planning, were recently discussed in updated SAFER Guides from the ONC. First published in January 2014, the SAFER Guides “provide an easy-to-use...

Administrative Safeguard Need Highlighted in PA Indictment

by

Healthcare organizations must ensure that they have comprehensive and regularly updated administrative safeguards, such as user authentication measures and proper access control. A failure to have these in place, or having outdated ones, could...

How Do HIPAA Regulations Apply to Wearable Devices?

by

Both covered entities and business associates should be well-aware of the OCR HIPAA audit program, especially as Phase 2 has been underway for several months now. However, as technology continues to evolve, there are also several areas that could...

Computer Virus Potentially Exposes PHI of 2.5K at OR Clinic

by

A technician at Lane Community College health clinic recently discovered a computer virus, which may have exposed the PHI of some patients, according to an online statement. The Oregon college health clinic stated the virus may have been sending...

Survey Finds Cloud Security, IoT Security Potentially Lacking

by

While the majority of organizations utilize advanced technology for sensitive data, including cloud, IoT, and big data, those same entities might not be implementing appropriate data security solutions, according to a recent survey. Lagging cloud...

3 Critical Steps for Managing Third-Party Access to Your EHR

by

Before a hospital grants any kind of network access to users from an outside organization, like a physician’s practice, it must determine to whom access is granted and for how long. It is a complex and essential process. This article will...

How Healthcare Cybersecurity Measures Affect National Approach

by

Earlier this month, the Subcommittee on Cybersecurity and Infrastructure Protection of the Homeland Security Committee held a hearing to determine the value and effectiveness of the current engagement between the private sector and the Department...

St. Charles Privacy Incident Leads to DA Criminal Investigation

by

Oregon-based St. Charles Health System recently announced a privacy incident where an employee accessed approximately 2,500 patients’ electronic medical information without authorization. St. Charles explained in an online statement that...

WEDI Outlines Tips for Improving Healthcare Cybersecurity

by

As healthcare data breaches increase in frequency and become more intricate in types of attacks, organizations must ensure that their healthcare cybersecurity measures appropriately match, according to the Workgroup for Electronic Data Interchange...

How HIE Security Concerns Impact Patient Data Withholding

by

Concerns over HIE security and how patient data may be shared or accessed could lead to patients withholding some of their personal information, according to Commonwealth Fund President David Blumenthal, MD, MPP. Blumenthal explained in a recent...

Metropolitan Urology Ransomware Attack Affects 18K Patients

by

Wisconsin-based Metropolitan Urology Group (MUG) recently notified patients that it had experienced a ransomware attack on November 28, 206. MUG explained in a statement on its website that it became aware of the incident on January 10, 2017....

IT Security Workers Expect IoT Cybersecurity Attack Increase

by

As more industries, including healthcare, continue to implement connected devices in critical infrastructure segments, there will likely be an increase in Industrial Internet of Things (IIoT) cybersecurity attacks, according to a recent Tripwire...

How Automation, Orchestration Impact Healthcare IT Security

by

The modern healthcare organization is a complex IT engine managing numerous users, lots of new resources, rich applications, and new concepts around healthcare service delivery. Here's the reality – the pace of healthcare innovation...

VA University Health System Security Breach Impacts 2.7K

by

Virginia Commonwealth University (VCU) Health System recently discovered a data breach potentially impacted over 2,700 patients, according to an announcement in the Richmond Times-Dispatch. On January 10, 2017, VCU Health System became aware...

How AI Can Help Fight Healthcare Ransomware Threats

by

Healthcare is facing more ransomware threats every day, and is a prime target for such attacks. However, the Institute for Critical Infrastructure Technology (ICIT) explained in a recent paper that artificial intelligence could greatly aid organizations...

N.M. Senate Committee Passes Data Breach Notification Bill

by

A New Mexico data breach notification bill was recently passed by a state Senate Committee, and will move onto the Senate Judiciary Committee, according to the Los Alamos Daily Post.   Rep. Bill Rehm introduced House Bill 15, and explained...

OIG Finds IT Weaknesses in MA Medicaid Management Info System

by

The Massachusetts Medicaid Management Information System (MMIS) was not adequately protected, which could have compromised the integrity of the state’s Medicaid program, according to a recent Office of Inspector General (OIG) report. These...

How Cybersecurity Affects the Evolving Healthcare CISO Role

by

The healthcare C-suite continues to evolve, along with the increasingly complex cybersecurity threats. Healthcare CISOs must now have knowledge in many areas, and understand just how far data breach repercussions can go.  The Chief Information...

Expanding Beyond HIPAA Audit Prep for Information Governance

by

Earlier this month, the American Health Information Management Association (AHIMA) published its newest toolkit to assist organizations in preparing for HIPAA audits. The “External HIPAA Audit Readiness Toolkit” addresses...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks