Healthcare Information Security

Health IT Security and HIPAA News

More Orgs Seeking Staff for Healthcare Privacy, Security Jobs

by

There was a large increase in healthcare privacy and security job postings, indicating that the health information management (HIM) profession is continuing to evolve with the needs of healthcare organizations, according to a recent study...

Improve Healthcare Data Security with Stronger Authentication

by

The comment period recently closed on NIST special publications discussing digital identity guidelines, which could potentially impact healthcare organizations working to improve their healthcare data security measures. “Identity proofing...

Calif. Patient Privacy Case Reaches State Supreme Court

by

Oral arguments in a patient privacy case were presented to the California Supreme Court earlier this week, claiming that controlled substance prescription data collected and submitted to the state justice department should remain protected. In...

House Committee Passes NIST Small Business Cybersecurity Act

by

The US House Committee on Science, Space, and Technology passed the NIST Small Business Cybersecurity Act of 2017 earlier this week in an effort to ensure that small businesses are given necessary resources to reduce their risk for cybersecurity...

NCCIC Cautions Multiple Sectors of Recent Malware Threats

by

Sophisticated malware threats that appear to be leveraging stolen administrative credentials may affect numerous industries, including healthcare, according to a recent National Cybersecurity and Communications Integration Center (NCCIC) warning....

PHI Security of 20K Possibly Affected from RI Laptop Theft

by

On February 25, 2017, Lifespan Corporation suffered a possible healthcare data breach in which an employee’s laptop was stolen. The theft occurred when an individual broke into an employee’s car and stole several items, including...

Report Finds 16.6M Affected by 2016 Healthcare Data Breaches

by

There was a record number of healthcare data breaches reported in 2016, with unauthorized disclosures accounting for the majority of those incidents, according to the Bitglass 2017 Healthcare Breach Report. Hacking and IT incidents still pose...

Addressing the Cybersecurity Skills Gap with Improved Training

by

Healthcare is one of many industries struggling with a cybersecurity skills gap, working to ensure that the right individuals are put into positions where they can adequately manage the increasing threats. Being able to address that increasing...

Vendor Risk Management Key Focus in Recent HITRUST Program

by

A new HITRUST exchange aims to help entities as they request and receive third-party security and privacy risk assessment information, streamlining the vendor risk management process. The HITRUST Assessment Exchange will utilize the HITRUST CSF...

NJ Psychologist to Fight HIPAA Violation Allegations

by

New Jersey-based psychologist Dr. Barry Helfmann has been accused of failing to prevent patient mental health diagnoses and treatment details from being released. The alleged HIPAA violations reportedly occurred when Helfmann’s practice...

DirectTrust PHI Sharing Grew 21% from 2016 to 2017

by

DirectTrust use, including PHI sharing and Direct exchange transactions, continued to increase from Q1 2016 to Q1 2017, according to a DirectTrust statement. The number of healthcare organizations served by DirectTrust health information service...

Verizon Finds Phishing Attacks, Malware Top Data Breach Causes

by

Increased propriety research, prototypes, and amounts of confidential personal data have all helped fuel cyberespionage attacks, such as phishing attacks, according to a recent Verizon report. There was also a 50 percent increase in ransomware...

50% of Industry Incidents from Healthcare Ransomware Attacks

by

Half of the reported healthcare data security incidents from October 2015 to September 2016 stemmed from healthcare ransomware attacks, according to a recent NTT Security report. The NTT Security 2017 Global Threat Intelligence Report found that...

Stolen, Unencrypted Drive Causes Data Security Concern for 15K

by

Western Health Screening (WHS) recently issued a letter notifying individuals of a possible data security breach in which a WHS-owned vehicle containing an unencrypted jump drive was stolen. The jump drive contained the personal information of...

Healthcare Data Security Incidents Second Highest in 2016

by

Healthcare continues to lag behind other regulated industries with security measures, according to recent research, with healthcare data security incidents ranking second for the services industry in 2016. Symantec’s 2017 Internet Security...

Lack of Business Associate Agreement Equals $31K Settlement

by

The Center for Children’s Digestive Health (CCDH) recently settled potential HIPAA violations by not having a business associate agreement in place, and paid OCR $31,000. The Illinois-based healthcare provider underwent an OCR compliance...

MDLive Lawsuit Claims Patient Data Privacy Violations

by

Allegations were recently filed against a telehealth provider, claiming that the company committed patient privacy violations and disclosed customer information to a third-party organization. MDLive, Inc. is facing a class-action lawsuit filed...

Mobile Security at Center of $2.5M OCR HIPAA Settlement

by

The latest OCR HIPAA settlement was the first of its kind for a wireless health services provider, following allegations of ePHI disclosure due to a stolen laptop. Pennsylvania-based CardioNet provides remote mobile monitoring of and rapid response...

2017 OCR HIPAA Settlements Focus on Risk Analyses, Safeguards

by

Maintaining PHI security must remain a top priority for covered entities and business associates year-round. Lackluster safeguards and irregular risk analyses can lead to potential data security issues, and even an OCR HIPAA settlement. With...

Judge Says HIPAA Regulations Do Not Apply in Organ Donor Case

by

Patient records from the New York Organ Donor Network are not liable to HIPAA regulations, according to a recent New York Supreme Court ruling. A former network official claimed that four patients had not yet been declared legally dead before...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks