Healthcare Information Security

Healthcare Data Encryption

Patient information breached after office computer theft

by Nicole Freeman

An office break-in may have comprised the protected health information (PHI) of patients at Dr. J.M. Benson’s Sherman, Texas practice, according to a report from the Herald Democrat. The incident was reported on January 5, 2014. During the...

Palo Verde Healthcare reports internal data breach

by Patrick Ouellette

The Palo Verde Healthcare District (PVHD) recently alerted an unknown number of patients with letters that a HIPAA violation had occurred involving their protected health information (PHI). Four former PVHD administrator employees a civil lawsuit...

Faxing error causes United Healthcare breach

by Nicole Freeman

A Portland, Oregon man has been receiving erroneous faxes containing protected health information (PHI) from Community Memorial Hospital patients through an apparent error with United Healthcare, an insurance company, according to a report from...

Triple-S receives $6.8M fine for HIPAA violation

by Nicole Freeman

Triple-S Salud, a Puerto Rican managed care company, has been fined $6.8 million by the Medical Insurance Administration (ASES in Spanish) after a HIPAA violation, according to a report from Caribbean Business. The breach occurred last year....

HIMSS14: Health data encryption rollout strategies for CIOs

by Patrick Ouellette

A key consideration when performing a risk assessment within a healthcare organization is how it plans on encrypting both data at rest and in motion. To help with these plans, Denis Tanguay, CIO, Central Maine Medical Center and Jeff Bell, CISSP...

VA risk management team expects data breach in year ahead

by Nicole Freeman

A memo from the Department of Veterans Affairs (VA) has noted that the organization’s security standards are so lacking that a data breach is “practically unavoidable,” according to reports from CNBC and Military.com. The comment was made...

Healthcare network access data found on file-sharing website

by Nicole Freeman

Documents containing information on how to access healthcare provider networks were found on the file-sharing website 4shared.com, known as source of information for hackers, according to a report from The Wall Street Journal. The files included...

NIST releases new cryptographic standards draft document

by Patrick Ouellette

The National Institute of Standards and Technology (NIST) recently issued a draft document, “NIST Cryptographic Standards and Guidelines Development Process“, that offers insight into a proposed new method for how the agency develops...

St. Vincent Hospital notifies 1,100 patients of laptop theft

by Nicole Freeman

Over 1,100 patients of St. Vincent Hospital in Indianapolis are being notified of a potential data breach after laptop being used with an EEG machine was reported missing, according to a report from WISHTV.com. The laptop, which was password-protected,...

HIMSS14 session preview: Encrypting data at rest

by Nicole Freeman

Healthcare providers often hear about the benefits of encrypting protect health information (PHI), and the data breaches that become more serious when information is unencrypted. Encrypting data at rest is required of HIPAA-covered entities per...

OCR complaint filed against St. Rose Dominican Hospitals

by Patrick Ouellette

Because it allegedly compromised patient records as part of gaining leverage in a contract dispute, Dignity Health, which owns St. Rose Dominican Hospitals, is in the process of dealing with a complaint filed with the Office for Civil Rights...

Post healthcare data breach Dos and Don’ts

by Deena Coffman

No healthcare provider or other HIPAA covered entity expects to experience a data breach. But, if your organization does encounter an exposure, how you handle it could counterbalance the negative impact of the breach and preserve your reputation....

What will Google cloud BAA support mean for health developers?

by Patrick Ouellette

Google recently announced that Google cloud services will now include support for HIPAA covered entities. For some organizations that are wary of using cloud applications, this was a ho-hum announcement. But for those who are working toward building...

HIMSS14 session: Identity fraud and data breach management

by Nicole Freeman

As the healthcare industry continues to see a rise in data breaches and identity fraud cases, healthcare providers must ensure that their electronic health records systems (EHR), servers, and electronic devices all have adequate protection in...

Easter Seals notifies 3,026 clients of health data breach

by Patrick Ouellette

The Easter Seal Society of Superior California sent health data breach notification letters to 3,026 Easter Seals clients and potential clients on Friday after an employee’s work-issued laptop was stolen. According to the release, the laptop...

Vendors to showcase secure solutions at HIMSS14

by Nicole Freeman

As HIMSS14 in Orlando gets closer, vendors are announcing their participation and product showcases. Patient data security continues to be a focal point in the healthcare industry, and companies are eager to share their HIPAA-compliant offerings....

Google extends HIPAA BAA support to cloud app developers

by Patrick Ouellette

Google will continue to warm up to HIPAA covered entities and business associates (BAs) in 2014, as Matthew O’Connor, Google Product Manager, recently wrote that Google cloud services will now include support for HIPAA covered entities. Google...

IT expert discusses healthcare security challenges, training

by Patrick Ouellette

With new technology infrastructure going into healthcare organizations and massive amounts of data being filtered through them, there isn’t a single set of policies or products that can help these organizations adhere to security best practices....

University of Miami Health System loses patient records

by Nicole Freeman

The University of Miami Health System (UHealth) has lost patient records containing protected health information (PHI), according to a report by Miami New Times. The Health System, which is one of Southern Florida’s largest health providers,...

HIPAA requires providers using Skype to have BAAs

by Nicole Freeman

As expanding technology gives doctors new ways to contact patients and share their information HIPAA compliance questions continually pop up. Do the products being used protect patient data? Are additional safeguards required to comply with HIPAA?...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks