Healthcare Information Security

HIPAA Compliance

AI, IoT, Medical Devices Top Health Cybersecurity Predictions for 2019

December 13, 2018 - Cybersecurity continued to be a struggle for many in the healthcare sector this year, with several massive breaches, successful targeted phishing campaigns, and security events caused by human error. While providers struggled with the basics, like email errors and a lack of encryption, hackers have pummeled the sector with increasingly sophisticated attack methods. Protenus won’t...


More Articles

HHS, OCR Seek Industry Feedback on HIPAA Update for Data Sharing

by Jessica Davis

The Department of Health and Human Service and the Office for Civil Rights are seeking industry feedback on how to improve HIPAA guidance, especially around care coordination. The OCR Request for Information comes in response to an...

OCR Settles with Colorado Provider for $111,000 over HIPAA Failures

by Jessica Davis

The Department of Health and Human Services’ Office for Civil Rights settled with Pagosa Springs Medical Center for $111,400, for failing to terminate a former employee’s access to electronic protected health...

Reduce Employee Email Risk by Taking Decisions Away from Users

by Jessica Davis

Employees and human error often top the list as the healthcare sector’s biggest threat. Considering they are the catalyst for clicking malicious links, engaging with targeted phishing campaigns and mistakenly sending emails to the...

AHIMA, AMIA Call for HIPAA Upgrade to Support Patient Access

by Jessica Davis

HIPAA needs to be modernized to improve patient access to health data and bolster security of the app ecosystem, American Medical Informatics Association and American Health Information Management Association leaders said at a Capitol Hill...

Dental Breach Notification Sparked by EMR Vendor Refusal

by Jessica Davis

Florida-based Key Dental Group is notifying some of its patients of a breach, after its electronic medical record vendor refused to return a patient database at the end of its contract. According to officials, Key Dental received a...

Phishing Attack Impacts Health Data of 128K Employees, Patients

by Jessica Davis

New York Oncology Hematology is notifying 128,400 employees and patients that their patient data may have been breached, after 15 employees fell victim to a phishing campaign in April. The phishing emails were highly targeted, appearing...

Another Major Storm, Another HHS HIPAA Privacy Rule Waiver

by Fred Donovan

HHS Secretary Alex Azar has issued another HIPAA Privacy Rule waiver for US territory the Northern Marianas Islands, which was devastated by Super Typhoon Yutu this week. Super Typhoon Yutu was a Category 5 storm when it hit the Northern...

Anthem to Pay Record $16M for HIPAA Violations Exposing 79M Records

by Fred Donovan

Anthem has agreed to pay a record $16 million, almost three times the previous highest HIPAA penalty, and to take correct actions to settle HIPAA violations that exposed the ePHI of close to 79 million people, OCR announced Oct....

Azar Issues 2nd HIPAA Privacy Rule Waiver in As Many Months

by Fred Donovan

As in the case of Hurricane Florence, HHS Secretary Alex Azar has waived sanctions and penalties under certain HIPAA Privacy Rule provisions for areas impacted by Hurricane Michael. The waiver is intended to enable greater information...

Aetna Reaches Settlements with State AGs Over HIPAA Violations

by Fred Donovan

Health insurer Aetna has reached settlements with a number of state attorney generals over HIPAA violations resulting from mailings to HIV/AIDS and cardiac patients, the New Jersey attorney general announced Oct. 10. The three states and...

Hospitals Fail at HIPAA Compliance Re Medical Records Requests

by Fred Donovan

Many hospitals failed at HIPAA compliance in response to simulated patients’ requests for medical records, according to a study by Yale researchers published in the JAMA Network Open. The researchers surveyed 83 top-ranked US...

Iowa County Government Employee Alleges HIPAA Violation

by Fred Donovan

An employee of the Iowa’s Mahaska County government alleged that another employee committed a HIPAA violation when she locked a member of the public inside a building where files containing PHI were stored unsecured, the...

Congress Urged To Align 42 CFR Part 2 With HIPAA Privacy Rule

by Fred Donovan

The Partnership to Amend 42 CFR Part 2 is urging Congress to include the Overdose Prevention and Patient Safety Act (HR 6082), which would align 42 CFR Part 2 with the HIPAA Privacy Rule, in compromise opioid legislation that the House and...

UMass Memorial to Pay $230,000 for Healthcare Data Breaches

by Fred Donovan

UMass Memorial healthcare entities have agreed to pay $230,000 to the state of Massachusetts to resolve claims that two separate healthcare data breaches exposed PHI of more than 15,000 state residents. The lawsuit by the Massachusetts...

MA Physician Gets 1-Year Probation for Criminal HIPAA Violation

by Fred Donovan

Rita Luthra, a Springfield, MA-based gynecologist, was sentenced Sept. 19 to one-year probation for a criminal HIPAA violation and obstruction of a criminal healthcare investigation. In April, a jury convicted her of allowing a...

Boston Hospitals Cough Up $1M for ‘Boston Trauma’ HIPAA Violations

by Fred Donovan

OCR announced Sept. 20 that it has fined three Boston-area hospitals close to $1 million for HIPAA violations involving the filming of ABC’s TV series “Save My Life: Boston Trauma.”* OCR reached HIPAA settlements with...

Best Practices for Providers to Secure Patient Data

by Insight

The number and frequency of cyberthreats to patient data show no sign of slowing down, with hackers devoting more time and resources to stealing patient data. As a result, healthcare organizations are becoming increasingly worried about...

Azar Waives HIPAA Privacy Rule Sanctions for Hurricane Response

by Fred Donovan

HHS Secretary Alex Azar has waived sanctions and penalties under certain HIPAA Privacy Rule provisions that apply to hospitals to enable greater sharing of information in response to Hurricane Florence making landfall on the East...

Bill Would Exempt HIPAA Covered Entities from California Privacy Law

by Fred Donovan

The California legislature has passed amendments to the sweeping California Consumer Privacy Act that would, among other changes, exempt HIPAA covered entities and business associates from the state law’s requirements. It would also...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...