Healthcare Information Security

Health IT Security and HIPAA News

Kentucky Health Center Ensures PHI Security After Email Gaffe

by

On February 3, 2017, Women’s Care of Somerset (WCS) employees erroneously disclosed the email addresses of all recipients of an informative email regarding health-related services to the other recipients. According to a written press release,...

Va. Data Breach Legislation Update Accounts for Payroll Data

by

Virginia recently updated its data breach legislation to require notification should payroll data become compromised. The amended statute applies to employers or payroll service providers who experience unauthorized access and acquisition of...

Prioritizing Healthcare Data Security in Aggregation, Sharing

by

Data aggregation is quickly becoming a larger issue in healthcare, especially as organizations begin to switch over from fee-for-service models to value-based healthcare. As entities continue to gather, store, and transfer sensitive information,...

Employee Healthcare Data Security Awareness Top Industry Threat

by

Approximately 80 percent of surveyed health IT executives and professionals report that employee security awareness is their greatest concern regarding healthcare data security. The 2017 Level 3 Healthcare Security Study was conducted...

HHS OIG Phone Scam Raises Patient Data Privacy Concerns

by

The HHS Office of Inspector General (OIG) hotline number for reporting fraud was recently spoofed, according to an HHS statement. Individuals reported receiving phone calls claiming to be from HHS OIG, requesting that they confirm personal information...

HIMSS Urges Holistic Approach in NIST Cybersecurity Framework

by

Having a holistic approach to healthcare cybersecurity is essential in the industry, but there is a lack of alignment between the people, processes, and technology, according to HIMSS. That lack of alignment often creates difficulty for healthcare...

FDA Has Medical Device Cybersecurity Concerns in Abbott Labs

by

The FDA recently sent a warning letter to Abbott Labs, explaining that there were potential medical device cybersecurity issues with some of Abbott’s devices that were acquired with Abbott’s purchase of St. Jude Medical earlier this...

Mobile Security Strategies for Common Provider Concerns

by

As covered entities and business associates continue to adopt mobile security strategies, it can be increasingly difficult to find tools that are innovative but do not compromise security. Mobile app privacy and security worries and maintaining...

Health Center Agrees to $400K OCR HIPAA Settlement

by

Failing to conduct a risk analysis and not implementing a corresponding risk management plan to address found risks and vulnerabilities were part of the reasoning behind the latest OCR HIPAA settlement. Metro Community Provider Network (MCPN)...

NY Computer Virus Raises Healthcare Data Security Concerns

by

Erie County Medical Center (ECMC) has been battling a computer virus that was discovered on its computer system early Sunday morning, causing concern over the organization’s healthcare data security. The hospital has voluntarily shut down...

Do Healthcare Data Breach Lawsuits Have Reasonable Standards?

by

Being able to prove fault in a healthcare data breach class action lawsuit is inherently difficult, but it is also important to understand the privacy expectations, according to a recent Corporate Clients Insight blog post. Data breach cases...

Cybersecurity Attacks Hit 87% of Organizations in 2016

by

A majority of organizations reported that they were affected by a cybersecurity attack last year, with one in three saying that they had been hacked more than five times in the past 12 months, according to a recent Bitglass report. In response,...

TN Updates Data Breach Notification Law for Encrypted Data

by

Any person or business that conducts business in Tennessee is only required give data breach notification if the information acquired was unencrypted, according to a recently passed amendment. Amended Senate Bill 547 states that encrypted data...

ONC Reiterates Healthcare Data Privacy, Security Need in PMI

by

The Precision Medicine Initiative (PMI) is a federal research program that hopes to improve how disease is treated, but there are still healthcare data privacy and security concerns. However, ONC explained in a recent blog post that keeping data...

Provider Secure Messaging May Encourage Patient Communication

by

Healthcare providers may have a positive impact in how patients utilize secure messaging, according to a recent study published in the Journal of Medical Internet Research (JMIR). Provider secure messaging levels can predict their patients’...

AMIA Calls for HIPAA Clarification in mHealth Patient Data

by

While mHealth applications can help bridge the health IT gap between providers and patients, greater HIPAA clarification and even an expansion of the rules may be necessary, according to the American Medical Informatics Association (AMIA). AMIA...

Healthcare Information Sharing Need Stressed in Recent Hearing

by

Industry stakeholders recently met at a Subcommittee on Oversight and Investigations hearing on how to improve healthcare cybersecurity. Stronger healthcare information sharing was underlined as a key factor in strengthening the public-private...

55K Potentially Affected by Virus Encrypting Pediatric Servers

by

On February 6, 2017, ABCD Pediatrics discovered a virus had gained access to the healthcare organization’s servers and encrypted patient data. The Texas-based pediatric facility immediately contacted IT personnel to take all servers offline...

Study Addresses Federal Cybersecurity Workforce Challenges

by

Promoting a cyber and science, technology, engineering and mathematics (STEM) education, as well as creating cybersecurity scholarships are two key ways federal cybersecurity workforce challenges can be addressed, according to a recent Government...

AHA Suggests Law Enforcement Aid in Cyber Attack Prevention

by

Law enforcement agencies should be given necessary resources to proactively share information, conduct investigations, and assist data breach victims to ensure strong cyber attack prevention measures, according to the American Hospital Association...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks