Healthcare Information Security

HIPAA Administrative Safeguards

2013 HIMSS Security Survey highlights internal risks

by Patrick Ouellette

From security staffing and budgets to security breaches and medical identity theft, the 2013 HIMSS Security Survey encompassed a broad range of healthcare IT security topics. The survey tracked feedback from of 283 information technology (IT)...

St. Vincent Hospital notifies 1,100 patients of laptop theft

by Nicole Freeman

Over 1,100 patients of St. Vincent Hospital in Indianapolis are being notified of a potential data breach after laptop being used with an EEG machine was reported missing, according to a report from WISHTV.com. The laptop, which was password-protected,...

HIMSS14 session preview: C-suite & security risk management

by Nicole Freeman

In small practices, doctors and their staff members can make security and risk management decisions and implement changes with little hassle. Organizations on a larger scale, however, are often subject to decisions made by executives and boards...

HIMSS14 session preview: HIPAA security controls & analytics

by Nicole Freeman

While healthcare organizations are often warned of data breaches and the need for security measures, there may be concern as to what kinds of protection are needed. How much security is enough? What does each unique provider need to do to protect...

HIMSS14 session preview: Encrypting data at rest

by Nicole Freeman

Healthcare providers often hear about the benefits of encrypting protect health information (PHI), and the data breaches that become more serious when information is unencrypted. Encrypting data at rest is required of HIPAA-covered entities per...

OCR complaint filed against St. Rose Dominican Hospitals

by Patrick Ouellette

Because it allegedly compromised patient records as part of gaining leverage in a contract dispute, Dignity Health, which owns St. Rose Dominican Hospitals, is in the process of dealing with a complaint filed with the Office for Civil Rights...

Post healthcare data breach Dos and Don’ts

by Deena Coffman

No healthcare provider or other HIPAA covered entity expects to experience a data breach. But, if your organization does encounter an exposure, how you handle it could counterbalance the negative impact of the breach and preserve your reputation....

Survey: Healthcare lowest in security, highest in threat risk

by Nicole Freeman

Agari, real-time data-driven security solutions provider, released the findings of its fourth quarter edition of the Agari Email TrustIndex, and found the healthcare industry to be the most at-risk for email attacks and cyber-fraud. The TrustIndex...

HIMSS14 session: Identity fraud and data breach management

by Nicole Freeman

As the healthcare industry continues to see a rise in data breaches and identity fraud cases, healthcare providers must ensure that their electronic health records systems (EHR), servers, and electronic devices all have adequate protection in...

Easter Seals notifies 3,026 clients of health data breach

by Patrick Ouellette

The Easter Seal Society of Superior California sent health data breach notification letters to 3,026 Easter Seals clients and potential clients on Friday after an employee’s work-issued laptop was stolen. According to the release, the laptop...

University of Miami Health System loses patient records

by Nicole Freeman

The University of Miami Health System (UHealth) has lost patient records containing protected health information (PHI), according to a report by Miami New Times. The Health System, which is one of Southern Florida’s largest health providers,...

HIPAA requires providers using Skype to have BAAs

by Nicole Freeman

As expanding technology gives doctors new ways to contact patients and share their information HIPAA compliance questions continually pop up. Do the products being used protect patient data? Are additional safeguards required to comply with HIPAA?...

Beebe Healthcare suffers breach through contracted employee

by Nicole Freeman

Beebe Healthcare of Delaware is notifying 1,900 patients of a data breach stemming from a temporary contractor, according to a report from WBOC16.com. The employee had worked at three Beebe offices in their network since August 2013. Beebe was...

Network access control an asset to system security

by Nicole Freeman

Network access control (NAC) was rated highest among security technologies defending against cyberthreats, according to the “2014 Cyberthreat Defense Report” from CyberEdge Group, LLC and ForeScout Technologies, Inc. In 2013, over 60 percent...

St. Joseph data breach affects 405,000

by Nicole Freeman

St. Joseph Health System (SJHS) in Texas reported a data breach that occurred between December 16 and 18, according to reports from KWTX.com and Theeagle.com. The breach has affected more than 405,000 patients, employees, and employee beneficiaries....

Health data breach report: 137 percent breached record uptick

by Patrick Ouellette

According to Redspin’s 2013 Breach Report, 804 large breaches of protected health information (PHI) have affected more than 29.2 million patient records and were reported to the Secretary of Health and Human Services (HHS) since the inception...

Study: Data breaches cost healthcare providers $1.6 billion

by Patrick Ouellette

MeriTalk and EMC announced the results today of a study, Rx: ITaaS + Trust, dedicated to getting a better understanding of costs for healthcare providers associated with security breaches, data loss and unplanned outages. The study claims, according...

Unity Health Plans notifies 41,437 of missing hard drive

by Nicole Freeman

Unity Health Plans Insurance Corporation is notifying 41,437 members of a portable heard drive missing from the UW-Madison School of Pharmacy, according to reports from the Wisconsin State Journal and Fox47. The hard drive, reported missing to...

North Country Hospital has second breach in 4 months

by Nicole Freeman

The Centers for Medicare and Medicaid Services (CMS) issued a regulatory citation to North Country Hospital in Newport, Vermont after two unauthorized employees accessed confidential medical records, according to a report from WCAX.com. The incident...

LabMD winds down operations after FTC motion rejection

by Patrick Ouellette

After numerous attempts to assert that Federal Trade Commission’s (FTC) didn’t have the necessary authority to take data security enforcement action against it after a breach, LabMD is throwing in the proverbial white towel and will wind...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks