Healthcare Information Security

Data Breach Management

NC Data Breach Legislation Accounts for Ransomware Attacks

January 16, 2018 - Following an increase in reported state data breaches in 2017, North Carolina’s attorney general and a state representative introduced data breach legislation to better protect individuals. The updated Act to Strengthen Identity Theft Protections updates what constitutes a security breach and allows for tighter data protection, according to a fact sheet from the Attorney General’s...


More Articles

Potential WV Health Data Breach from Laptop Theft Affects 43K

by Elizabeth Snell

West Virginia-based Coplin Health Systems recently reported a possible health data breach after it discovered that a laptop potentially containing personal health information was stolen. The device was stolen from an employee’s automobile...

Are Orgs Filling Necessary Healthcare Cybersecurity Roles?

by Elizabeth Snell

Without the right healthcare cybersecurity roles being filled at covered entities, it can be more difficult for organizations to ensure that sensitive data remains secure. Along with CISOs, privacy officers, and compliance officers, entities...

5 Tips for a Strong Healthcare Data Breach Response

by Bill Kleyman

No one wants to experience an active security situation. A data breach will result in numerous sleepless nights, big expenses, and lots of lost confidence. The challenge, however, is that healthcare data is just so valuable. In the 2017 Ponemon...

Senator Urges Prompt Data Breach Disclosure in Recent Bill

by Elizabeth Snell

Florida Senator Bill Nelson introduced legislation toward the end of November 2017 that would require organizations to adhere to a more prompt data breach disclosure process. Companies that do not follow the requirements and attempt to deliberately...

Survey Shows US Cybersecurity Attacks Costing Orgs More Money

by Elizabeth Snell

More US-based organizations are investing in their IT security and physical security measures, but the costs of cybersecurity attacks are still on the rise, according to recent research. CSO, the CERT Division of the Software Engineering...

Improve Healthcare Data Security with a Strong Backup Strategy

by Bill Kleyman

In working with healthcare organizations, there are constantly two topics that are brought up: healthcare data security and resiliency. Of course, there are other conversations around user experience, cloud, and so on. However, a major outage...

Single National Data Breach Notification Standard Proposed

by Elizabeth Snell

A recently proposed bill calls for a single national data breach notification standard, which would replace the existing state notification laws and “clarify and strengthen” organizations’ reporting obligations. Rhode Island...

FTC Blogs Review Data Security, Data Breach Prevention Basics

by Elizabeth Snell

The FTC has started a blog series to help organizations better understand the agency’s approach to data security, and to ensure that entities in numerous sectors can create strong data prevention measures. Starting with the FTC’s...

OPM Data Breach Controls Improved, Further Action Required

by Elizabeth Snell

The Office of Personnel Management (OPM) has made improvements in its data security, but a Government Accountability Office (GAO) report still outlined several areas where OPM data breach controls can be strengthened. The 2015 OPM data breaches...

Creating a Healthcare Security Incident Reporting Process

by Clyde Hewitt of CynergisTek

With the recent wave of ransomware attacks, hacking attempts, and unauthorized disclosures, healthcare organizations have more opportunities to exercise their incident management plans. Unfortunately, these same organizations are learning the...

Va. Data Breach Legislation Update Accounts for Payroll Data

by Elizabeth Snell

Virginia recently updated its data breach legislation to require notification should payroll data become compromised. The amended statute applies to employers or payroll service providers who experience unauthorized access and acquisition of...

Do Healthcare Data Breach Lawsuits Have Reasonable Standards?

by Elizabeth Snell

Being able to prove fault in a healthcare data breach class action lawsuit is inherently difficult, but it is also important to understand the privacy expectations, according to a recent Corporate Clients Insight blog post. Data breach cases...

TN Updates Data Breach Notification Law for Encrypted Data

by Elizabeth Snell

Any person or business that conducts business in Tennessee is only required give data breach notification if the information acquired was unencrypted, according to a recently passed amendment. Amended Senate Bill 547 states that encrypted data...

Mass. Launches Online Data Breach Notification Archive

by Elizabeth Snell

As part of the recently updated Massachusetts Public Records Law, the state’s Office of Consumer Affairs and Business Regulation made its online Data Breach Notification Archive available to the public. Governor Charlie Baker signed the...

Companies Lacking Confidence in Data Breach Preparedness

by Elizabeth Snell

More organizations are implementing data breach preparedness plans, but a recent survey showed that those same companies are not entirely confident in their ability to recover from potential data security incidents. The fourth annual Is Your...

IL Data Breach Notification Law to Include Healthcare Data

by Jacqueline Belliveau

Last month, Illinois Governor Bruce Rauner signed several amendments to a data breach notification law that would impact healthcare data security regulations starting in 2017. Under the revised Personal Information Privacy Act, protected personal...

Proposed NY Data Breach Legislation Accounts for PHI Security

by Elizabeth Snell

Pending data breach legislation in New York could potentially affect the future of PHI security, as the proposed bill would include individuals’ medical information under its definition of personal information. If the bill passes, unsecured...

HITRUST Program Identifies Healthcare Cybersecurity Threats

by Jacqueline Belliveau

With a slew of new healthcare cybersecurity threats seemingly appearing each day, many organizations are struggling to proactively identify and protect themselves from unknown and more sophisticated cyber threats, like hospital ransomware. The...

Most 2016 Healthcare Data Breaches From Unauthorized Access

by Elizabeth Snell

Last year is often referred to as the “Year of the Hack” for healthcare, with the majority of healthcare data breaches being caused by third-party cyber attacks. The top three incidents alone combined to potentially affect nearly...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks