HIPAA | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

HIPAA

HIPAA: Five Steps to Ensuring Your Risk Assessment Complies with OCR Guidelines

July 14, 2017  |  Janice Ahlstrom, R.N., and Kenneth Zoline
article
Many organizations may not truly understand the HIPAA Security Rule and how to conduct an accurate and thorough assessment of the potential risks to ePHI. Here are five steps to put you on the right track to be compliant with OCR guidelines.

Global Survey: 95 Percent of Healthcare Orgs Don’t Use Security Governance or Risk Management Software

July 11, 2017  |  Heather Landi
news
Despite the cyber threats facing healthcare organizations, 95 percent of IT specialists working at medical organizations around the world report that their organizations do not use any software for information security governance or risk management, according to...

Cyber Attack Update: Nuance Still Down, Researchers Believe “Petya” is not Ransomware

June 29, 2017  |  Heather Landi
news
Nuance Communications, a Burlington, Mass.-based technology company that provides cloud-based dictation and transcription service to hospitals and health systems, continues to be down following the global malware incident on Tuesday that affected multinational...

PA Health System, Health IT Vendor Affected by Global “Petya” Ransomware Attack

June 28, 2017  |  Heather Landi
article
Pennsylvania-based Heritage Valley Health Systems and Nuance Communications have confirmed their companies were victims of a global ransomware cyber attack, which some are referring to as the “Petya” ransomware virus, that hit multinational companies Tuesday.

Anthem Agrees to $115 Million Settlement in Data Breach Litigation

June 26, 2017  |  Heather Landi
news
Indianapolis-based Anthem has agreed to pay $115 million in a proposed settlement to resolve the multidistrict class action litigation relating to the 2015 cyber attack that compromised the personal information of 78.8 million people.

Healthcare Company CoPilot Settles Data Breach with $130K Payment

June 23, 2017  |  Rajiv Leventhal
news
CoPilot Provider Support Services, a New York-based corporation that provides support services to the healthcare industry, has agreed to pay $130,000 in penalties as part of a settlement to resolve a 2015 data breach that that exposed 221,178 patient records.

Report: Healthcare Data Breach Costs Remain Highest at $380 Per Record

June 20, 2017  |  Heather Landi
news
Healthcare continues to be the most expensive industry for data breaches, as healthcare data breaches cost organizations $380 per stolen record, more than twice the average global cost across all industries, according to the 2017 Cost of Data Breach Study.

Healthcare Cybersecurity, and HHS Response to WannaCry Ransomware, Focus of House Subcommittee Hearing

June 8, 2017  |  Heather Landi
article
During a House Energy and Commerce subcommittee hearing Thursday, HHS leaders shared lessons learned from the department's response to the recent WannaCry ransomware attack and recognized that many organizations are in dire need of cybersecurity resources.

ONC Names Privacy Policy Snapshot Challenge Winners

June 7, 2017  |  Rajiv Leventhal
news
ONC has announced the winners of the Privacy Policy Snapshot Challenge, a contest that called on stakeholders to use ONC’s Model Privacy Notice (MPN) template.

HHS Notice: WannaCry Malware Continues to Impact U.S. Healthcare Orgs

June 6, 2017  |  Heather Landi
news
In an email cyber notice, the U.S. Department of Health and Human Services (HHS) is warning healthcare provider organizations that there are ongoing impacts to the U.S. healthcare sector from the WannaCry malware.

HHS Task Force Report: Healthcare Cybersecurity is in Critical Condition

June 5, 2017  |  Heather Landi
news
The Department of Health and Human Services (HHS) Health Care Industry Cybersecurity Task Force, which was formed last year following passage of the Cybersecurity Act of 2015, issued its final report to Congress June 2 with a number of recommendations to improve...

St. Luke’s Pays $387,000 HIPAA Settlement for Impermissible Disclosure of PHI

May 24, 2017  |  Heather Landi
news
The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) has reported that St. Luke’s-Roosevelt Hospital Center, in New York City, has paid a $387,000 settlement for potential violations of the Health Insurance Portability and...

Enforcement Evolves

May 12, 2017  |  Mac McMillan, co-founder and CEO of CynergisTek, Inc.
commentary
At the same time we see cyber attacks continuing to escalate, we also are seeing a very serious and active response by the Office for Civil Rights with respect to its compliance review and breach investigation activity.

Texas Health System Will Pay $2.4M to Settle Potential HIPAA Disclosure Violations

May 10, 2017  |  Heather Landi
news
Memorial Hermann Health System (MHHS) has agreed to pay a $2.4 million settlement to the U.S. Department of Health and Human Services (HHS) and adopt a comprehensive corrective action plan stemming from potential violations of the Health Insurance Portability and...

Report: Healthcare Data Breaches Hit All-Time High in 2016

May 4, 2017  |  Rajiv Leventhal
news
Healthcare data breaches hit an all-time high (328) in 2016, surpassing the previous record set in 2015 (268), according to a report from Bitglass.

Report: Cyber Attackers Using Simple Tactics, Tools to Target Healthcare, Other Industries

April 26, 2017  |  Heather Landi
news
The number of reported breach incidents in healthcare grew by 22 percent in 2016 from 269 breach incidents in 2015 to 328 last year, according to Symantec’s 2017 Internet Security Threat Report (ISTR).

Survey: Two-Thirds of Healthcare Employees Share Confidential Data On Occasion

April 25, 2017  |  Heather Landi
news
Seventy-two percent of employee say they would share sensitive, confidential or regulated company information under certain circumstances and 68 percent of healthcare employees report that they share confidential or regulated data on occasion, according to the...

Device Manufacturer Will Pay $2.5M to Settle Potential HIPAA Noncompliance

April 24, 2017  |  Heather Landi
news
CardioNet, a Malvern, Pa.-based device manufacturer and a subsidiary of BioTelemtry, has agree to pay a $2.5 million settlement with the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) due to potential noncompliance with the Health...

Illinois Provider Pays $31,000 HIPAA Settlement Due to Lack of BA Agreement

April 21, 2017  |  Heather Landi
news
The Center for Children’s Digestive Health has paid the U.S. Department of Health and Human Services (HHS) $31,000 to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy Rule and agreed to implement a...

Report: Data Breach Incidents in March Affected 1.5 Million Patient Records

April 14, 2017  |  Heather Landi
news
There was a sharp spike in the number of breached patient records as the result of data breach incidents in March, with this month seeing 2.5 times the number of breached records in January and February combined, according to the latest Protenus “Breach Barometer...

Former OCR Advisor on HIPAA Compliance and Data Breaches: “This is a Management Problem, Not a User Problem”

April 13, 2017  |  Heather Landi
article
David Holtzman, vice president of compliance strategies at Austin-based CynergisTek and former HHS OCR senior advisor, shares his perspective about HIPAA compliance issues and why hospital executives need to sit up and notice OCR’s enforcement activities.

Denver-Based FQHC Will Pay $400,000 HIPAA Settlement

April 12, 2017  |  Heather Landi
news
HHS Office for Civil Rights (OCR) announced that a Denver-based provider, Metro Community Provider Network, has agreed to pay $400,000 and to implement a corrective action plan to settle potential noncompliance with HIPAA Privacy and Security Rules.

Pediatric Group Reports Ransomware Attack Impacting 55,000 Patients’ Data

April 6, 2017  |  Heather Landi
news
A pediatrics practice, ABCD Pediatrics, serving the San Antonio, Texas metropolitan area reported that it was hit with a ransomware attack and the virus began encrypting the practice's servers, however, the encryption was slowed significantly by existing...

Report: 72 Percent of Healthcare Employees Are Security "Risks" or Security "Novices"

April 5, 2017  |  Heather Landi
news
Only 28 percent of healthcare employees demonstrated the privacy and security awareness to prevent incidents that could lead to the exposure of protected health information (PHI) and other forms of personal data, according to a recent MediaPro survey.

Trump Administration Appoints Roger Severino to Head Office for Civil Rights

March 24, 2017  |  Heather Landi
news
Roger Severino, a former staffer at The Heritage Foundation, has been appointed as the director of the Office of Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS).

Report: 60 Percent of Healthcare Data Breaches in February Came From Within the Organizations

March 20, 2017  |  Heather Landi
news
In February, hacking incidents only accounted for 12 percent of total healthcare data breach incidents, yet insiders were responsible for almost 60 percent of the total breach incidents during the month, which points to a troubling trend, according to the latest...

The Connected Health Initiative Launches ‘HIPAA Check’ Tool for App Developers

March 9, 2017  |  Heather Landi
news
The Connected Health Initiative, with ACT | The App Association, has developed an interactive tool to help software and app developers determine how their technology fits within the Health Insurance Portability and Accountability Act of 1996 (HIPAA) privacy and...

AHIMA Publishes Toolkit for On-Site OCR HIPAA Phase 2 Audits

March 6, 2017  |  Heather Landi
news
The American Health Information Management Association’s (AHIMA) has released its newest toolkit, the “External HIPAA Audit Readiness Toolkit,” to assist organizations in preparing for Health Insurance Portability and Accountability Act (HIPAA) Phase 2 audits.

HITRUST Develops Security Framework for Small Healthcare Organizations

March 1, 2017  |  Heather Landi
news
The Health Information Trust Alliance, HITRUST, has announced updates to the HITRUST Common Security Framework (CSF) and a new CSF initiative targeting smaller healthcare organizations to support their information risk management programs and improve their cyber...

Study: Cybersecurity Budgets, Staff Growing, but Many Organizations Still Lagging

February 27, 2017  |  Heather Landi
news
Cybersecurity budgets are growing and healthcare organizations are allocating more employees to IT security compared to a year ago, however, despite the progress, significant gaps remain, according to a study from HIMSS Analytics and Symantec released last week...

Pages

Subscribe to HIPAA
betebet sohbet hattı betebet bahis siteleringsbahis