Clik here to view.
HIPAA Gets a Little Cloudy
Pun intended. We all use cloud computing resources every day. All you have to do is go on the Internet, and chances are the website you are accessing uses cloud services. Our website,...
View ArticleClik here to view.
OCR’s Guidance to HIPAA & Cloud Computing
We have previously posted about HHS/OCR’s Guidance on HIPAA & Cloud Computing. The guidance is presented in question and answer form. To see the full guidance, you can go to the OCR page. Below...
View ArticleClik here to view.
Article: Doctors are failing to protect your privacy as a patient
The title of the Business Insider article ( Doctors are failing to protect your privacy as a patient ) will open a lot of eyes. The article is written from a patient perspective on how her data was...
View ArticleClik here to view.
OCR ‘Laser Focused’ on HIPAA Violation Complaints, Enforcement
HealthIT Security has a very good article on OCR HIPAA activities. A key message is that not all OCR complaints result in HIPAA violations OCR will continue to focus “its enforcement efforts and its...
View ArticleClik here to view.
WARNING: BE ON THE LOOKOUT FOR OCR PHISHING EMAIL
In a cruel twist of fate, health care entities are being phished using an OCR (HHS Office of Civil Rights) email as the bait. Here is the context: HHS/OCR is the governmental entity in charge of...
View ArticleNew CMS MACRA Rule Kicks In, Factors HIPAA Compliance into New Payment Structure
MORRISTOWN, NJ (PRWEB) NOVEMBER 21, 2016 HIPAA Secure Now! is set to handle security risk assessments that will be required of medical practices, under the new MACRA regulation (Medicare Access and...
View ArticlePeachtree Orthopedics breach hits 531,000 patients
Peachtree Orthopedics has experienced a huge data breach that affects over 500,000 patients. It seems that Peachtree was a victim of a hacker who stole the information and went a step further by...
View ArticleData breaches at smaller companies can be devastating
According to a Verizon study, data breaches at Small and Midsize Businesses (SMBs) occur more frequently than at larger companies. Another study found that the impact of a SMB breach could be...
View ArticleClik here to view.
Still time to do a SRA for Meaningful Use
We frequently get asked about the timing of when a Security Risk Assessment (SRA) needs to be performed for Meaningful Use. So here is some guidance: SRA for Meaningful Use A SRA needs to be performed...
View ArticleClik here to view.
OCR’s guidance to audit controls
In the January, 2017 edition of the OCR Cyber Newsletter (PDF), OCR gives guidance to what is required from Covered Entities and Business Associate regarding auditing / monitoring of access to PHI....
View ArticleClik here to view.
CMS extends Meaningful Use deadline to March 13, 2017
The Centers for Medicare & Medicaid Services extended the deadline for Meaningful Use requirements for providers participating in the Medicare EHR Incentive program. The new deadline is March 13,...
View ArticleClik here to view.
Ransomware: could smaller practices be the next victims?
As you may know, ransomware has become a top concern for organizations across the globe as cybercriminals continue to flex their muscles and show just how easily they can take down an organization...
View ArticleClik here to view.
Healthcare firms to increase security spending
With the dramatic number of security breaches over the last few years, it should come as no surprise that the healthcare industry has plans to increase spending on IT security. An article over at CIO...
View ArticleClik here to view.
The Latest Details on HIPAA Compliance Audits
Deven McGraw, deputy director of the Department of Health and Human Services’ Office for Civil Rights has announced that the department’s plans for initiating onsite audits is currently on hold and...
View ArticleClik here to view.
Article – FBI: Attackers Targeting Anonymous FTP Servers in Healthcare
A warning issued by the FBI cautions healthcare providers to beware of threat actors, who are now targeting anonymous File Transfer Protocol Servers (FTP), associated with both medical and dental...
View ArticleClik here to view.
Ransomware Attack on Urology Austin
A total of 279,663 patients are being notified by Urology Austin that their protected health information (PHI) may have been compromised in a ransomware attack. Information that may have been...
View ArticleClik here to view.
TV Show – Chicago Med a Ransomware Victim
You know ransomware is a real threat when it starts showing up on TV shows. Chicago Med is a victim of a ransomware attack on the hospital. It is time to be concerned in real life! The post...
View ArticleClik here to view.
Large data breaches happening at U.S. Hospitals
When you think of being a patient in the hospital, the last thing you may think about is the safety of your personal data. According to research findings by Michigan State University, the security of...
View ArticleClik here to view.
Even Non-Profits can get HIPAA Fines
Federally Qualified Health Centers (FQHCs), Community Health Centers (CHCs) and related entities are non-profit organizations that run on shoestring budgets. These organizations are constantly in...
View ArticleClik here to view.
75% of health organizations fall below cybersecurity poverty line
George DeCesare, Chief Technology Risk Officer for Kaiser Permanente, met with the Health and Human Services Department as well as other security experts and came away with some shocking truth. An...
View Article