A recent court ruling illustrates yet another way patient privacy can be compromised. A federal bankruptcy court slapped WakeMed Health and Hospitals with financial penalties for exposing patient information in filings it made for cases.
A recent incident involving a vendor using a Boston clinic employee's credentials to inappropriately access patient data via a regional health information exchange illustrates the potential risks involved as the use of HIEs continues to grow.
There is no more hedging on whether ransomware incidents should be identified and treated the same way as other data breaches under the Health Insurance Portability and Accountability Act (HIPAA). The U.S. Department of Health and Human Services Office for Civil Rights (OCR) has stated that ransomware attacks...
The healthcare industry - both payers and providers - has become a favorite target of threat actors. While 2015 was named the "year of the healthcare breach," 2016 has seen its share of large-scale attacks, especially in the form of ransomware. With the U.S. Department of Health and Human Services Office for Civil...
B. Vindell Washington, M.D., the new head of the Office of the National Coordinator for Health IT, pledges that the agency's top priority of advancing standards-based interoperable, secure health data exchange will continue under his leadership. But what will happen once a new president is elected?
The Department of Health and Human Services is gearing up for its first-ever round of HIPAA compliance audits of business associates, and is also developing new guidance aimed at helping organizations deal with a surge in cyber threats.
A watchdog agency report highlighting data security violations by a Department of Veterans Affairs medical contractor offers a reminder to all healthcare organizations about similar risks their business associates can pose - especially if BAs are inadequately monitored.
A former administrative worker at a Florida pediatric practice has been indicted in federal court along with two others for alleged identity theft and fraud crimes involving stolen patient information. But why didn't prosecutors file HIPAA-related criminal charges?
How do companies in the healthcare industry better manage risk and keep their most valuable data safe when stolen healthcare information commands such a high price on the dark web? Download the case study, "Proactively Challenge Cyber Threats in the Healthcare Industry," to learn how this healthcare organization...
In this in-depth interview, Iliana Peters of the HHS Office for Civil Rights explains the agency's strategy for ramping up investigations of health data breaches affecting fewer than 500 individuals.
Many healthcare professionals have asked the question: Is there
such a thing as a HIPAA-compliant cloud? The short answer is yes.
With mature cloud providers, the ability to design, implement
and manage governance rules for data and procedures is baked
into the architecture. Issues such as physical and network...
Many healthcare organizations embark on cloud migrations to achieve scalability, cost-efficiency, and higher application performance. But migrating applications to the cloud can be a complex process, so maintaining HIPAA compliance and maximizing PHI security are always key considerations.
Download this white paper...
To know where healthcare IT security is going - and what it needs
to protect in 2017 and beyond - it's instructive to take a look at
where we've been.
In general, compromised credentials remain
the leading source of intrusion across industries. Specific to
healthcare, the top three sources of unauthorized data...
Granular patient consent policies - adopted despite HIPAA allowing certain data to be shared without explicit patient consent - can lead to less data being exchanged by healthcare entities, says researcher Julia Adler Milstein of the University of Michigan, who describes results of a new study.
A former Fla. hospital worker has been sentenced to federal prison in a case involving criminal HIPAA violations and tax fraud. Although the prosecution of HIPAA-related crimes are still rare, some experts say such cases could be on the rise.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing govinfosecurity.com, you agree to our use of cookies.