Healthcare Information Security

Health IT Security and HIPAA News

HIPAA Regulations Not Applicable in TN Supreme Court Case

by

Medical authorization compliant with HIPAA regulations is not required when a pre-suit notice is sent to a single healthcare provider, according to a recent Tennessee Supreme Court ruling. In 2011, Deborah Bray filed a healthcare liability suit...

Increased Training Can Benefit Healthcare Secure Messaging

by

With patient portals helping fuel healthcare secure messaging, additional training for both patients and providers can help alleviate “rules of engagement” concerns, according to a study published in the Journal of Medical Internet...

Overcoming File Sharing, Healthcare Cloud Security Concerns

by

Potential file sharing and healthcare cloud security risks must be addressed in covered entities’ and business associates’ risk analyses, according to the latest OCR cybersecurity newsletter. These collaboration tools can greatly...

Keeping Healthcare Information Security Training a Priority

by

Without the right information security training, healthcare providers could fall victim to numerous types of cybersecurity issues, such as a ransomware attack. Employees at all levels need to understand the types of warning signs to look for...

PHI of 13K Involved in Ransomware Attack at PA Health Clinic

by

On April 24, 2017, Family Tree Health Clinic discovered a ransomware attack potentially affecting PHI stored in its IT system, according to an online statement. The Pennsylvania health clinic immediately restored its system data using backup...

NH-ISAC Issues Petya Ransomware Vaccine, Mitigation

by

The National Health Information Sharing and Analysis Center (NH-ISAC) announced that it had a Petya ransomware vaccine, and also discussed mitigation tactics that organizations can follow to minimize the potential risk of infection. Entities...

Shifting the Corporate Focus to Healthcare Data Security

by

Healthcare environments continue to change and evolve within today’s digital environment. In fact, many healthcare shops are working extra hard to align with a new, “digitally native” user. We’re seeing things like digital...

AMIA Stresses Patient Data Security Concerns in Federal Rule

by

As technology and informatics tools have continued to evolve, more provisions are needed to bolster modern research while ensuring patient data security for research participants, according to the American Medical Informatics Association (AMIA)....

5 Tips for Healthcare Data Security Success in 2018

by

We’re more than half-way through 2017 and many healthcare organizations are already looking ahead. And, for good reason. Healthcare data security will remain one of the top concerns for the vast majority of healthcare organizations housing...

Saint Thomas Health Data Breach from Misplaced Documents

by

In April, Saint Thomas Health discovered a potential health data breach involving patient information at its facility in Murfreesboro, Tennessee. The breach potentially impacted 2,859 Saint Thomas patients, the organization said in an online...

Health System, Pharma Firm Report Cybersecurity Incidents

by

Pennsylvania-based Heritage Valley Health System (HVHS) reported that it had experienced a cybersecurity incident on June 27, 2017. While HVHS did not specifically identify the type of ransomware attack, it said that it was “identified...

US-CERT Warns of Petya Ransomware, Microsoft Vulnerabilities

by

Using unpatched and unsupported software may increase the risk of being affected by malicious software, such as Petya ransomware infections, according to the Department of Homeland Security’s (DHS) US Computer Emergency Readiness Team (US-CERT)....

Incentivize Cybersecurity Best Practices for Data Security

by

Maintaining strong patient data security in the ever-evolving healthcare IT space will heavily depend on strong cyber hygiene and proper cybersecurity best practices, according to American Medical Association Board of Trustees Secretary Jesse...

FTC Data Security Enforcement Standard Center in LabMD Case

by

The US Court of Appeals for the Eleventh District listened to oral arguments last week in the case of LabMD, Inc. versus the Federal Trade Commission (FTC). The Court must determine if the FTC overstepped its authority with its data security...

$115M Settlement Proposed in Anthem Data Breach Case

by

Plaintiffs in the Anthem data breach litigation case recently filed a $115 million settlement proposal, which would also require the healthcare provider to guarantee a certain level of funding for information security. Anthem would also need...

Updated Google Policy May Affect Patient Data Security

by

Google recently updated its privacy policy, which could have a positive effect on patient data security. As of last week, Google began removing private medical records from its search results. The Google “Removal Policies” page now...

Airway Oxygen Ransomware Attack May Affect PHI of 500K

by

Michigan-based Airway Oxygen, Inc. is notifying patients that their PHI may have been involved in a ransomware attack that took place earlier this year. The medical equipment supply company explained in its notification letter to individuals...

FDA Implementing Risk-Based Medical Device Regulation

by

The FDA will soon launch a new Digital Health Innovation Plan, which will include a focus on implementing a risk-based approach to medical device regulation, according to FDA Commissioner Scott Gottlieb, MD. Gottlieb explained in a recent...

Key Ransomware Prevention Measures in Recent Executive Order

by

An executive order signed by the president in May 2017 has important guidelines and priorities organizations can follow to improve their cybersecurity, including instilling stronger ransomware prevention, according to a blog post by UC Berkeley...

Improper Disposal Creates PHI Security Concern for 1.8K

by

On June 16, the Texas Health and Human Services Commission (HHSC) notified patients of a recent potential security breach that may have involved the PHI of 1,842 residents of the Houston area. The incident was discovered when a box of forms containing...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks