Telehealth

OCR Publishes Resources On Telehealth Privacy, Security Risks

October 19, 2023 - The HHS Office for Civil Rights (OCR) unveiled two resource documents to help providers communicate telehealth privacy and security risks to patients. The documents, entitled “Educating Patients about Privacy and Security Risks to Protected Health Information when Using Remote Communication Technologies for Telehealth” and...


More Articles

How FTC Enforcement Actions Will Impact Telehealth Data Privacy

by Jill McKeon

The Federal Trade Commission (FTC) made its stance on health data privacy and security abundantly clear with two recent high-profile settlements against GoodRx and BetterHelp, setting the stage for future enforcement actions and heightened...

Pandemic-Era Telehealth Rules Set to Expire in May, Shifting HIPAA Compliance Obligations

by Jill McKeon

The COVID-19 public health emergency (PHE) is set to end on May 11, marking the expiration of many pandemic-era support programs and lighter compliance obligations. As such, the HHS Office for Civil...

Cerebral Notifies 3.1M Users of Healthcare Data Breach Stemming From Pixel Use

by Jill McKeon

Telehealth platform Cerebral reported a healthcare data breach to HHS impacting more than 3.1 million individuals. Cerebral provides online therapy and medication management to millions of...

Telehealth Companies Under Scrutiny For Allegedly Sharing Health Data With Third-Party Advertisers

by Jill McKeon

Senators Amy Klobuchar (D-MN), Susan Collins (R-ME), Maria Cantwell (D-WA), and Cynthia Lummis (R-WY) sent letters to telehealth companies Cerebral, Monument, and WorkIt Health, addressing concerns...

NIST Issues Final Guidance on RPM, Telehealth Security

by Jill McKeon

The National Cybersecurity Center of Excellence (NCCoE), which is part of the National Institute of Standards and Technology (NIST), released final guidance on remote patient monitoring (RPM) and...

81% of Telehealth Providers Are Concerned About Data Leakage

by Jill McKeon

Telehealth proved to be a crucial and tool in healthcare at the height of the pandemic, but patients and providers still harbor concerns about data security and privacy. Over 90 percent of global...

Telehealth Security Concerns Surrounding Mental Healthcare Persist

by Jill McKeon

Telehealth enabled quality patient care during the height of the pandemic, but mental healthcare patients remain wary of security concerns, according to a survey conducted by Propeller Insights on...

Cloud Security Alliance Releases Telehealth Risk Management Paper

by Jill McKeon

A recent paper from the Cloud Security Alliance (CSA) provides guidance on HIPAA compliance, cybersecurity, and telehealth risk management. The paper offers best practices for data use, storage, and...

The Telehealth Security Impact: Now and Beyond the COVID-19 Pandemic

by Jessica Davis

The COVID-19 response resulted in a virtual care boom that’s expected to last well beyond the pandemic. As telehealth continues to support the shift in healthcare, ensuring a minimal security...

HSCC Shares Telehealth Cybersecurity Assessment, Mitigation Guidance

by Jessica Davis

The Healthcare and Public Health Sector Coordinating Council (HSCC) shared guidance directed at telehealth vendors and services providers, to support with the assessment and mitigation of potential...

Report: COVID-19 Telehealth Risks and Best Practice Privacy, Security

by Jessica Davis

Highlighting the risks posed by lifted restrictions on communication apps amid the COVID-19 pandemic, new research published in the Journal of the American Medical Informatics Association urged...

Zoom Reaches Settlement with FTC Over Misleading Security Practices

by Jessica Davis

The Federal Trade Commission reached a settlement with Zoom to resolve allegations that the company engaged in misleading security practices. The use of the videoconferencing platform...

DHS CISA Shares Best Practice Ransomware Guide, Telework Toolkit

by Jessica Davis

The Department of Homeland Security Cybersecurity and Infrastructure Security Agency recently released a pair of insights. The first outlines best practice guidance for ransomware and other threats,...

FBI, CISA Alert of Surge in Vishing Cyberattacks on Remote Workers

by Jessica Davis

Hackers are targeting employees working remotely amid the COVID-19 pandemic with a voice phishing, or “vishing,” campaign to obtain enterprise login credentials for mining...

NSA Shares Guide to Securing IPSec VPNs, Telework, Remote Sites

by Jessica Davis

The National Security Agency (NSA) released guidance designed to help organizations better secure Ip Security (IpSec) Virtual Private Networks (VPNs), given the rapid adoption of telework and...

DHS Alerts to Ransomware Campaign Targeting Remote Access Systems

by Jessica Davis

The Department of Homeland Security Cybersecurity and Infrastructure Security Agency issued an alert, urging enterprise organizations to review recent insights from the New Zealand Computer Emergency...