HIPAA | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

HIPAA

Healthcare Accounted for 26 Percent of Cybersecurity Incidents in Q2 2017

September 28, 2017  |  Heather Landi
news
McAfee, Inc., a computer security software company, recently released its McAfee Labs Threats Report assessing reported attacks across industries, and reveals growth trends in malware, ransomware, mobile malware, and other threats in the second quarter of 2017.

New Legislation Intends to Align Substance Abuse Treatment Records with HIPAA

September 27, 2017  |  Rajiv Leventhal
news
Two U.S. senators are introducing a bill to bring the regulations governing substance use treatment disorder records in better alignment with the privacy rules and protections for other medical records.

Survey: 73 Percent of Medical Professionals Share Passwords to Access EHRs

September 27, 2017  |  Heather Landi
news
A recent study examining the prevalence of password sharing among healthcare professionals found that 73 percent of medical staff members reported having used another medical staff member’s password to access electronic health record (EHR) systems at work.

Protenus: Hacking Incidents are Quickly Discovered, But Insiders Go Undetected

September 21, 2017  |  Heather Landi
news
A report on healthcare data breaches in July and August finds that while hacking incidents are quickly detected, insider breach incidents continue to go unnoticed, which can have a significant impact on healthcare organizations and patients.

DHS Issues Warning About Cybersecurity Vulnerabilities in Wireless Infusion Pumps

September 12, 2017  |  Heather Landi
news
The U.S. Department of Homeland Security’s Industrial Control Systems Cyber Emergency Response Team (DHS ICS-CERT) last week issued an advisory outlining eight vulnerabilities in Smiths Medical’s Medfusion 4000 Wireless Syringe Infusion Pump.

Aetna Hit with Lawsuit after Potentially Exposing HIV Status of 12K Customers

August 29, 2017  |  Rajiv Leventhal
news
Health insurer Aetna is facing strong criticism as well as a class action lawsuit for a privacy breach that the company acknowledged last week in which it potentially revealed the HIV status of thousands of customers via letters that were mailed out.

Getting Granular on Cybersecurity: Experts Talk Frameworks and Hacks in Philadelphia

August 14, 2017  |  Mark Hagland
article
At the Healthcare Informatics Health IT Summit Series-Philadelphia, healthcare IT leaders from the government, the provider sector, and the health plan sector shared perspectives on the biggest cybersecurity challenges facing the industry right now

Healthcare Informatics Releases Raleigh Health IT Summit Program Agenda

August 14, 2017  |  Heather Landi
news
Healthcare Informatics, in collaboration with healthcare leaders from across North Carolina, is bringing its critically acclaimed Health IT Summit Series event program to the Raleigh/Durham area on Oct. 19th and 20th at the Sheraton Raleigh Hotel.

Survey: 71 Percent of Healthcare Organizations Allocate a Specific Budget to Cybersecurity

August 9, 2017  |  Heather Landi
news
A new healthcare cybersecurity report from HIMSS finds that healthcare organizations are taking steps to enhance their cybersecurity programs to a greater degree, and the findings also indicate that organizations that employ a CISO or other senior information...

DHS Issues Cyber Alert for Siemens Medical Devices

August 7, 2017  |  Heather Landi
news
The Department of Homeland Security issued an advisory Friday after Siemens identified four vulnerabilities in its Molecular Imaging products running on Windows 7.

Without Transformational Investments in Data Security, Healthcare Will Continue to be Vulnerable

August 3, 2017  |  Heather Landi
commentary
Ongoing data breaches should be a call-to-action for healthcare organizations to increase data security, but many cybersecurity experts contend that call-to-action may be falling on deaf ears at the senior leadership and board level at patient care organizations.

Information Security Expert Predicts that the “Enron of Data Breaches” is Coming

July 31, 2017  |  Rajiv Leventhal
article
A cybersecurity consultant speaks with Healthcare Informatics about steps smaller physician practices can take to better protect their data in addition to broader cybersecurity trends he is seeing.

Are Healthcare IT Security Leaders Still Underestimating Cybersecurity Risks?

July 27, 2017  |  Heather Landi
article
A recent survey of healthcare IT security leaders indicates the industry’s level of readiness to defend against concerted cyber attacks has improved. However, despite the rising threats, investments in information security have actually declined since 2015.

HHS OCR Launches Revised HIPAA Breach Reporting Tool

July 25, 2017  |  Heather Landi
news
The U.S. Department of Health and Human Services (HHS) has launched a revised web tool, the breach portal, or “Wall of Shame” as it’s known in the healthcare industry, that the agency says features ease-of-use for organizations reporting data breach incidents.

In an Evolving Threat Landscape, Healthcare IT Security Leaders Face the Growing Challenge of IoT Devices

July 21, 2017  |  Heather Landi
article
During a recent webinar hosted by the Center for Connected Medicine, healthcare IT security thought leaders parsed the challenges of cybersecurity and the Internet of Medical Things (IoMT) in an evolving threat environment.

HITRUST CSF Certification Now Includes NIST Cybersecurity Certification

July 21, 2017  |  Heather Landi
news
HITRUST has announced that HITRUST cybersecurity framework (CSF) version 9 enhancements now extend an “assess once, report many” approach as a standard security framework for multiple critical infrastructure industries and includes National Institute of Standards...

Hospitals Ranked on Responsiveness to Patient Record Requests; How Is Yours Doing?

July 20, 2017  |  David Raths
commentary
PatientBank, a company that helps patients request their records from hospitals, created a rubric to rate hospital health information management departments on their flexibility and responsiveness.

HIPAA: Five Steps to Ensuring Your Risk Assessment Complies with OCR Guidelines

July 14, 2017  |  Janice Ahlstrom, R.N., and Kenneth Zoline
article
Many organizations may not truly understand the HIPAA Security Rule and how to conduct an accurate and thorough assessment of the potential risks to ePHI. Here are five steps to put you on the right track to be compliant with OCR guidelines.

Global Survey: 95 Percent of Healthcare Orgs Don’t Use Security Governance or Risk Management Software

July 11, 2017  |  Heather Landi
news
Despite the cyber threats facing healthcare organizations, 95 percent of IT specialists working at medical organizations around the world report that their organizations do not use any software for information security governance or risk management, according to...

Cyber Attack Update: Nuance Still Down, Researchers Believe “Petya” is not Ransomware

June 29, 2017  |  Heather Landi
news
Nuance Communications, a Burlington, Mass.-based technology company that provides cloud-based dictation and transcription service to hospitals and health systems, continues to be down following the global malware incident on Tuesday that affected multinational...

PA Health System, Health IT Vendor Affected by Global “Petya” Ransomware Attack

June 28, 2017  |  Heather Landi
article
Pennsylvania-based Heritage Valley Health Systems and Nuance Communications have confirmed their companies were victims of a global ransomware cyber attack, which some are referring to as the “Petya” ransomware virus, that hit multinational companies Tuesday.

Anthem Agrees to $115 Million Settlement in Data Breach Litigation

June 26, 2017  |  Heather Landi
news
Indianapolis-based Anthem has agreed to pay $115 million in a proposed settlement to resolve the multidistrict class action litigation relating to the 2015 cyber attack that compromised the personal information of 78.8 million people.

Healthcare Company CoPilot Settles Data Breach with $130K Payment

June 23, 2017  |  Rajiv Leventhal
news
CoPilot Provider Support Services, a New York-based corporation that provides support services to the healthcare industry, has agreed to pay $130,000 in penalties as part of a settlement to resolve a 2015 data breach that that exposed 221,178 patient records.

Report: Healthcare Data Breach Costs Remain Highest at $380 Per Record

June 20, 2017  |  Heather Landi
news
Healthcare continues to be the most expensive industry for data breaches, as healthcare data breaches cost organizations $380 per stolen record, more than twice the average global cost across all industries, according to the 2017 Cost of Data Breach Study.

Healthcare Cybersecurity, and HHS Response to WannaCry Ransomware, Focus of House Subcommittee Hearing

June 8, 2017  |  Heather Landi
article
During a House Energy and Commerce subcommittee hearing Thursday, HHS leaders shared lessons learned from the department's response to the recent WannaCry ransomware attack and recognized that many organizations are in dire need of cybersecurity resources.

ONC Names Privacy Policy Snapshot Challenge Winners

June 7, 2017  |  Rajiv Leventhal
news
ONC has announced the winners of the Privacy Policy Snapshot Challenge, a contest that called on stakeholders to use ONC’s Model Privacy Notice (MPN) template.

HHS Notice: WannaCry Malware Continues to Impact U.S. Healthcare Orgs

June 6, 2017  |  Heather Landi
news
In an email cyber notice, the U.S. Department of Health and Human Services (HHS) is warning healthcare provider organizations that there are ongoing impacts to the U.S. healthcare sector from the WannaCry malware.

HHS Task Force Report: Healthcare Cybersecurity is in Critical Condition

June 5, 2017  |  Heather Landi
news
The Department of Health and Human Services (HHS) Health Care Industry Cybersecurity Task Force, which was formed last year following passage of the Cybersecurity Act of 2015, issued its final report to Congress June 2 with a number of recommendations to improve...

St. Luke’s Pays $387,000 HIPAA Settlement for Impermissible Disclosure of PHI

May 24, 2017  |  Heather Landi
news
The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) has reported that St. Luke’s-Roosevelt Hospital Center, in New York City, has paid a $387,000 settlement for potential violations of the Health Insurance Portability and...

Enforcement Evolves

May 12, 2017  |  Mac McMillan, co-founder and CEO of CynergisTek, Inc.
commentary
At the same time we see cyber attacks continuing to escalate, we also are seeing a very serious and active response by the Office for Civil Rights with respect to its compliance review and breach investigation activity.

Pages

Subscribe to HIPAA
betebettipobetngsbahis