Healthcare Information Security


New Image Sharing Program Keeps PHI Safe

by Elizabeth Snell

As technology continues to develop, patients are gaining greater control in how they receive medical care and how their protected health information (PHI) is transferred. Everything from patient portals to secure messaging systems are...

Visionworks Hit with Second Data Breach in One Month

by Elizabeth Snell

A healthcare facility again experienced a data breach due to a missing computer server with unencrypted patient information. For the second time in one month, Visionworks was involved in a potential healthcare data breach. Moreover,...

Healthcare Data Breach Drama Continues for UMass Memorial

by Elizabeth Snell

A Massachusetts hospital is facing a civil lawsuit from a patient whose PHI was potentially exposed in a healthcare data breach. The University of Massachusetts Memorial Medical Center (UMMMC) of Worcester, Mass. is facing a civil lawsuit...

Healthcare Security Breach Hits Washington Hospitals

by Elizabeth Snell

A former employee gained unauthorized access to several hospitals, creating a healthcare security breach. Three Washington hospitals are working to fix their computer systems after a healthcare security breach led to the theft of 35...

Is Health Data Security a Top Concern for Everyone?

by Elizabeth Snell

A recent poll shows that patients are not overly concerned about their health data security. As technology continues to evolve, and healthcare organizations implement more connected options, it only makes sense that providers are working...

Stolen PHI Leads to Medical Identity Theft in Detroit

by Elizabeth Snell

Patients’ PHI was stolen from two Detroit-area hospitals. The thieves allegedly used the information to file false tax returns. Approximately 1,400 people had their protected health information (PHI) stolen from two metro Detroit...

Laptop with PHI Stolen from Brigham and Women’s Doctor

by Elizabeth Snell

Brigham and Woman’s Hospital (BWH) notified patients that an incident in September could potentially have exposed some individuals’ protected health information (PHI). A BWH physician’s laptop and cell phone were stolen during an...

VA Cybersecurity Vulnerabilities Still Exist, Says GAO

by Elizabeth Snell

A report shows that the VA has not done enough to mitigate potential cybersecurity risks. The Department of Veterans Affairs (VA) has not fully addressed all of its cybersecurity vulnerabilities, according to a recent US Government...

PHI Incidents Affect 640 Veterans in October, Says VA Report

by Elizabeth Snell

The VA released its monthly report to Congress on data breach incidents, which included the exposure of veterans’ PHI. The US Department of Veterans Affairs released its monthly data incidents report to Congress for October, some of...

How MyHealthDirect Achieved HITRUST Certification

by Elizabeth Snell

Healthcare organizations of all sizes work diligently to ensure that they remain HIPAA-compliant while also providing high-quality patient care. There are security, privacy, and regulatory guidelines that must be adhered to, and...

Comments Sought On NIST Cyber Threat Sharing Guide

by Elizabeth Snell

NIST released a guide on cyber threat information sharing, and is seeking comments through November 28. The Department of Commerce’s National Institute of Standards and Technology (NIST) drafted a guide on cyber threat information...

PHI Exposed on Emails to Anthem Blue Cross Members

by Elizabeth Snell

It is not yet clear if Anthem Blue Cross members receiving emails with their PHI in the subject line will warrant a data breach notification. Earlier this week, Anthem Blue Cross members in California had a bit of a surprise when they...

Healthcare Privacy Policies Must Be Stronger, Says AMA

by Elizabeth Snell

The AMA recently released policies describing how health insurers need to take greater care in ensuring healthcare privacy for patients. It would be greatly beneficial to patients if healthcare privacy policies were stronger, according to...

Penn. Health Insurer Suffers Potential Data Breach

by Elizabeth Snell

A health insurer is facing a potential data breach due to a computer server reported missing after an office move. Even with strong administrative safeguards and comprehensive firewalls, a health data breach can occur if employees at an...

Doctors Can Be Sued for HIPAA Negligence, Says Conn. Court

by Elizabeth Snell

The state Supreme Court ruled that physicians can be sued for HIPAA negligence if it violates certain regulations. Patients can sue a medical office for HIPAA negligence if it violates regulations that dictate how healthcare organizations...

Simplicity is Key for HIE and EHR Interoperability

by Elizabeth Snell

More healthcare organizations across the nation are working toward interoperability, while also ensuring that they abide by federal regulations in terms of HIEs, EHRs, and patient security. The move from paper-based systems to electronic...

PHI ‘Mishandling’ by Montana VA Leads to Possible Data Breach

by Elizabeth Snell

A healthcare data breach possibly occurred in Montana when PHI was mailed to the wrong individual. The VA Montana Health Care System is facing a potential health data breach after a veteran’s PHI was accidentally mailed to the wrong...

Unencrypted Discs with PHI Create Potential Health Data Breach

by Elizabeth Snell

The Arizona State Retirement System is facing a potential healthcare data breach after unencrypted discs with PHI went missing in the mail. When healthcare organizations fail to encrypt patients’ PHI, it is likely just a matter of time...

Health Data Encryption is Critical Aspect for PHI Security

by Elizabeth Snell

In an effort to keep patient information secure, more healthcare organizations are calling for health data encryption precautions. New Jersey even announced recent legislation that requires health insurers to encrypt patient health...

PHI Encryption Necessary, Says Proposed NJ Bill

by Elizabeth Snell

Health insurers should be required to encrypt patients’ protected health information, according to a proposed bill in New Jersey. Personal health information (PHI) should be encrypted on all health insurers’ computers, according to...


SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
Data Breaches

Our privacy policy

no, thanks

Continue to site...