Healthcare Information Security

HIPAA Technical Safeguards

NIST Guide Could Assist in Protecting Patient Privacy Online

by Elizabeth Snell

Protecting patient privacy is an essential aspect to any healthcare organization’s data security plan. However, employees still need to be able to access that data. Being able to properly manage accounts can be critical to ensuring...

Why Healthcare Data Encryption Should Be Considered

by Elizabeth Snell

Healthcare data encryption is an increasingly popular option when it comes to keeping sensitive data - such as patient PHI - secure. With more providers implementing mobile devices, connecting to EHRs, and using connected devices, the...

Why Healthcare Phishing Scams Are a Key Issue

by Elizabeth Snell

Covered entities know that they need to have a comprehensive health data security plan to prevent data breaches. But healthcare phishing scams can easily be overlooked as a key issue, as organizations could simply assume that such an...

NIST Guide Provides Strategies for Increased Email Security

by Sara Heath

Email hacking methods, such as phishing or the leaking of confidential information, can have catastrophic consequences such as health data breaches. As the Internet grows increasingly complex, and hackers grow more sophisticated, it is...

NIST Releases Draft Guidance on Improving Data Security

by Elizabeth Snell

The National Institute of Standards and Technology (NIST) recently published draft guidance on how organizations can improve their approach to data security. The guide discusses how using an attribute based access control (ABAC) system...

Health Data Encryption Not Completely Effective, Study Finds

by Sara Heath

PHI has been at great risk lately as health data breaches are on the rise. To curb that risk, healthcare organization IT experts have been implementing various safeguards, including data encryption, the practice of encoding information so...

Health Data Breaches Stem From Hacking, Employee Theft

by Elizabeth Snell

Health data breaches can be caused by various incidents, which is why covered entities and their business associates must have comprehensive safeguards in place. Two separate incidents at medical centers highlight the importance of this...

Health Data Breaches Stem From Cyber Attack, Exposed Binders

by Elizabeth Snell

Health data breaches can occur because of numerous reasons, which is why covered entities and their business associates must have comprehensive training measures and data security measures. All physical safeguards, technical safeguards and...

McLean Hospital Reports Health Data Breach, Affects 12,600

by Elizabeth Snell

Massachusetts-based McLean Hospital announced this week that it had suffered from a health data breach, potentially affecting 12,600 individuals. McLean discovered on May 29, 2015 that four unencrypted backup data tapes were missing,...

Children’s National Health Data Breach Leads to Lawsuit

by Elizabeth Snell

Children’s National Health System is facing a class-action lawsuit following a health data breach where 18,000 patients potentially had their information compromised. The incident took place toward the end of 2014, and occurred when...

How to Implement Strong HIPAA Technical Safeguards

by Elizabeth Snell

Having strong HIPAA technical safeguards is essential for healthcare organizations of all sizes. However, it is also critical that those safeguards are not the only data security measure that covered entities rely on to keep data...

A Review of Common HIPAA Technical Safeguards

by Elizabeth Snell

HIPAA technical safeguards are just one piece of the larger health data security plan that covered entities and their business associates must put together. However, it is a very important aspect. Over the next few weeks,...

Software Update Causes PHI Exposure for Blue Shield of Calif.

by Elizabeth Snell

Blue Shield of California is notifying patients that a recent software update led to potential PHI exposure. Faulty code on the company’s website for group health benefit plan administrators and brokers led to an unauthorized...

Why HIPAA Technical Safeguards Alone Are Not Enough

by Elizabeth Snell

HIPAA technical safeguards are an important part of any covered entity or business associate’s data security plan. However, that security measure by itself is not enough to ensure that a health data breach will never occur, according...

Healthcare Data Breaches Stem From Break-in, Phishing, Fraud

by Elizabeth Snell

Preventing healthcare data breaches requires organizations to take numerous factors into account, and ensure that their administrative, physical, and technical safeguards are all working with one another. One lost document, one employee...

Phishing Scams: HIPAA Technical or Administrative Safeguard?

by Elizabeth Snell

Phishing scams are not a new threat to the healthcare industry, but as other data security threats have evolved over time, so have phishing approaches. Early on, individuals might have gotten emails from someone claiming to be a prince...

Healthcare Authentication Factors: Breaking Down HIPAA

by Elizabeth Snell

Strong technical safeguards are essential for covered entities, regardless of their size, and the right healthcare authentication factors are a critical aspect of those safeguards. Locking down end users, and maintaining technical...

How Healthcare Malware Attacks are Evolving

by Elizabeth Snell

Healthcare malware attacks are evolving, which is why it is essential for facilities to keep current security measures. As the healthcare industry continues to adopt and implement new technologies, it is essential that facilities also keep...

Cybersecurity is 2015 Top Health Technology Hazard

by Elizabeth Snell

Cybersecurity is one of the top 10 health technology hazards for 2015, according to a recent ECRI Institute report. Cybersecurity should be a top priority for healthcare organizations, especially with more facilities implementing EHRs and...

VA Cybersecurity Woes Continue, 16 Consecutive Audit Fails

by Elizabeth Snell

The VA once again failed its annual cybersecurity audit. For the 16th consecutive year, the Department of Veterans Affairs failed its annual cybersecurity audit. The investigation sought to find out if the agency was in compliance with...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...