HIPAA | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

HIPAA

Report: 30 Percent of Healthcare Databases Exposed Online

December 10, 2018  |  Heather Landi, Associate Editor
news
Hackers are using the Dark Web to buy and sell personally identifiable information (PII) stolen from healthcare organizations, and exposed databases are a vulnerable attack surface for healthcare organizations, according to a new cybersecurity research report.

AMIA, AHIMA Call for HIPAA Modernization to Support Patient Access

December 7, 2018  |  Heather Landi, Associate Editor
news
Modernization of the 22-year-old Health Insurance Portability and Accountability Act (HIPAA) would improve patients’ access to their health information and protect their health data in a burgeoning app ecosystem, according to two leading health IT industry groups.

Twelve States File First Multistate Healthcare Data Breach Lawsuit

December 5, 2018  |  Heather Landi, Associate Editor
news
State Attorneys General from a dozen states filed a lawsuit Monday against two health IT companies alleging that poor security practices led to theft of protected health information (PHI) of 3.9 million individuals during a data security incident in 2015.

CARIN Alliance Creates Code of Conduct for Third-Party Apps

November 28, 2018  |  David Raths, Contributing Editor
news
The CARIN Alliance, a group of more than 60 healthcare and other stakeholders, has released the first draft of a voluntary code of conduct that entities not covered by HIPAA can self-attest to in order to access health data on behalf of consumers.

Phishing Attack on Healthcare Provider Impacts 128K Patient Records

November 21, 2018  |  Heather Landi, Associate Editor
news
New York Oncology Hematology, based in Albany, New York, is notifying its patients and employees that an unauthorized user may have gained access to several employee email accounts, and, potentially, accessed employee or patient data as a result of a phishing...

Study: Internal Negligence, Not Hackers, Responsible for Half of Data Breaches

November 20, 2018  |  Heather Landi, Associate Editor
news
While high-profile data breaches perpetrated by cyber criminals and hackers often make big headlines, a recent study found that more than half of healthcare data breaches are a result of internal issues, not external factors.

AMIA Calls for Harmonization of Data Privacy Policies

November 16, 2018  | 
news
As the lines between consumer and clinical data systems continues to blur, there is a need to harmonize health sector data privacy policy, such as HIPAA, and consumer data policy to develop a new era of privacy policy, according to the American Medical...

Survey Reveals Disconnect Between Perception and Reality of Medical Device Security

November 6, 2018  |  Heather Landi, Associate Editor
news
A recent survey of healthcare IT professionals found a troubling disconnect between IT leaders’ confidence in the visibility and security of their connected medical devices and the effectiveness of legacy solutions to secure connected medical devices.

HIT Policy Winds Get Stronger as CMS, ONC Regulations Set to Drop Any Day

November 1, 2018  |  Rajiv Leventhal, Managing Editor
article
The calendar has now turned to November as health IT stakeholders continue to anxiously await regulations from federal health agencies, some of which are sure to come in the next 60 days.

Mac McMillan Speaks to the Troubling Trend that Hospitals Still Aren’t Prioritizing Security

October 31, 2018  |  Rajiv Leventhal, Managing Editor
article
A survey released this morning from CHIME revealed that about 70 percent of responding patient care organizations do not have a comprehensive security program in place.

Industry Groups Call for Anti-Kickback Waiver for Cybersecurity Tech

October 31, 2018  |  Heather Landi, Associate Editor
news
Several healthcare and health IT industry groups are calling for a wavier under anti-kickback rules to enable the donation of healthcare cybersecurity technology and services to help improve the cybersecurity posture of providers and promote secure data exchange.

Health Data Breach on Healthcare.gov Portal Impacts 75K People

October 23, 2018  |  Heather Landi, Associate Editor
news
The Centers for Medicare & Medicaid Services’ (CMS) direct enrollment pathway for agents and brokers suffered a cyber attack last week and the hackers accessed the files of approximately 75,000 individuals, according to a new release issued by CMS last Friday.

FDA Releases Draft Premarket Cybersecurity Guidance for Medical Device Manufacturers

October 19, 2018  |  Heather Landi, Associate Editor
news
The Food and Drug Administration (FDA) has released draft guidance to the healthcare industry that updates cybersecurity recommendations for medical device manufacturers with the aim of addressing vulnerabilities and evolving cybersecurity threats.

Anthem Agrees to Record Payment—$16M—for Largest U.S. Health Data Breach

October 16, 2018  |  Heather Landi, Associate Editor
news
Anthem, Inc. has agreed to pay $16 million to HHS' Office for Civil Rights to settle potential HIPAA Privacy and Security Rules violations in the largest U.S. health data breach in history.

CISOs, CIOs Not Confident in Their Medical Device Security Strategy, New KLAS Research Finds

October 9, 2018  |  Heather Landi, Associate Editor
article
A new report from KLAS Research sheds light on the current state of the medical device security industry, including the finding that one-third of connected medical devices are "unpatchable."

Despite HIPAA Law, Researchers Say Getting Medical Records Still is Burdensome

October 8, 2018  |  Rajiv Leventhal, Managing Editor
news
A recent study of 83 hospitals has revealed that there was noncompliance with federal regulations for formats of release and state regulations for request processing times.

In New Opioids Legislation, Patient Privacy Holds Serve

October 3, 2018  |  Rajiv Leventhal, Managing Editor
commentary
Congress’ sweeping opioids legislation has created much debate in recent days and weeks, as stakeholders sit on different sides of the table over a key patient privacy element.

Aspire Health Suffers Email Breach from Phishing Attack

September 28, 2018  |  Heather Landi, Associate Editor
news
Aspire Health, a Nashville-based in-home healthcare provider, was hacked Sept. 3 as a result of a phishing attack and “lost” some protected health information (PHI), according to a report by the Tennessean.com.

Health IT Experts Develop the “Wizard” for Easier Health Record Access

September 27, 2018  |  Rajiv Leventhal, Managing Editor
news
A new tool has been developed that aims to streamline the process of patients getting copies of their medical records.

Research: Hackers Leveraging Error Messages from Connected Medical Devices

September 27, 2018  |  Heather Landi, Associate Editor
news
Recent research has identified a new trend in cyber attacks targeting connected medical devices—by simply monitoring the network traffic for common error messages, hackers can gain valuable insight into the inner workings of a device’s application.

Report: Privacy Laws to Remain Intact as Opioids Bill Nears Completion

September 25, 2018  |  Rajiv Leventhal, Managing Editor
news
As leading healthcare stakeholder groups remain on different sides of the fence regarding patient privacy laws in a sweeping opioids legislation, it’s looking like privacy advocates will win the battle.

Study: Health Plans Account for Majority of Breached Patient Records

September 25, 2018  |  Heather Landi, Associate Editor
news
Health plans accounted for the greatest number of patient records breached over the past seven years, according to an analysis of U.S. health care data conducted by two Massachusetts General Hospital physicians.

Healthcare’s “RegTech” Opportunity: Avoiding a 2008-Style Crisis

September 21, 2018  |  Robert Lord, Industry Voice, Co-Founder and President of Protenus
article
Today, as co-founder of a health technology company, I see healthcare is approaching a similarly dangerous situation as the financial crisis of 2007 to 2009.

HIPAA Settlements: Three Boston Hospitals Pay $1M in Fines for “Boston Trauma” Filming

September 20, 2018  |  Heather Landi, Associate Editor
news
Three Boston hospitals that allowed film crews to film an ABC documentary on their premises have settled with the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) over potential violations of the Health Insurance Portability and...

Independence Blue Cross Notifies 17K Patients of Breach

September 19, 2018  |  Rajiv Leventhal, Managing Editor
news
The Philadelphia-based health insurer Independence Blue Cross is notifying about 17,000 of its members that some of their protected health information (PHI) has been exposed online and has potentially been accessed by unauthorized individuals.

Report: Healthcare Lags Other Industries in Phishing Resiliency

September 19, 2018  |  Heather Landi, Associate Editor
news
Phishing attacks are a serious problem in the healthcare industry, yet a recent report found that the healthcare industry continues to trail behind many other industries in its phishing resiliency.

Survey: Healthcare Organizations Report Gaps in Disaster Preparedness Plans

September 12, 2018  |  Heather Landi, Associate Editor
news
As Hurricane Florence churns toward the East Coast this week, disaster preparedness is a timely topic, yet a new survey finds that only 72 percent of healthcare providers report their organizations have a comprehensive disaster recovery plan in place covering...

Designing Safe and Effective Digital Health Applications

September 10, 2018  |  Dave Levin, M.D. and Maulin Shah, M.D., Industry Voices
commentary
Health IT is on the cusp of an “app revolution.” Careful attention to basic design principles combined with a methodical approach to screening and addressing issues can go a long way.

The Healthcare CISO: An Essential Cyber Guardian

August 24, 2018  |  Nick Giannas, Industry Voice
article
As cybersecurity incidents continue to increase and evolve, the CISO has become a pivotal role. What are the challenges healthcare leaders face in identifying and recruiting CISO candidates?

Phishing Attack at Georgia Health System May Have Exposed 400K Patients’ Data

August 20, 2018  |  Heather Landi, Associate Editor
news
Augusta University Health System, based in Augusta, Georgia, has reported that a phishing attack on email accounts that occurred last fall may have led to the unauthorized access of protected health information (PHI) of approximately 417,000 individuals.

Pages

Subscribe to HIPAA
betebet sohbet hattı betebet bahis siteleringsbahis