The Most Common HIPAA Violations You Should Be Aware Of
The most common HIPAA violations that have resulted in financial penalties are the failure to perform an organization-wide risk analysis to identify risks to the confidentiality, integrity, and...
View Article2020-2021 HIPAA Violation Cases and Penalties
The Department of Health and Human Services’ Office for Civil Rights (OCR) settled 19 HIPAA violation cases in 2020. More financial penalties were issued in 2020 than in any other year since the...
View ArticleDecember 2021 Healthcare Data Breach Report
56 data breaches of 500 or more healthcare records were reported to the HHS’ Office for Civil Rights (OCR) in December 2021, which is a 17.64% decrease from the previous month. In 2021, an average of...
View ArticleHHS Releases Final Trusted Exchange Framework and Common Agreement
The Department of Health and Human Services’ Office of the National Coordinator for Health IT has released the final version of its Trusted Exchange Framework and the Common Agreement (TEFCA) – a...
View ArticleMore Than Half of All Healthcare IoT Devices Have a Known, Unpatched Critical...
A recent study by the healthcare IoT security platform provider Cynerio has revealed 53% of connected medical devices and other healthcare IoT devices have at least one unaddressed critical...
View ArticleNew York Fines EyeMed $600,000 for 2.1 Million-Record Data Breach
The first settlement of 2022 to resolve a healthcare data breach has been announced by New York Attorney General Letitia James. The Ohio-based vision benefits provider EyeMed Vision Care has agreed to...
View ArticleFlorida County Drug Screening Lab Exposed Sensitive Data Online for 4 Years
A misconfiguration of an internal website portal used by a Florida county drug screening lab has exposed sensitive information online for a period of more than four years. St. Lucie County’s drug...
View ArticleTechnologies Supporting Telehealth are Placing Healthcare Data at Risk
A new report from Kaspersky indicates the massive increase in telehealth has placed healthcare data at risk. Vulnerabilities have been found in the technologies that support telemedicine, many of which...
View ArticleRI Attorney General Subpoenas RIPTA and UnitedHealthcare Over 22,000-Record...
The Rhode Island Attorney General is investigating UnitedHealthcare and the Rhode Island Public Transit Authority (RIPTA) over a cyberattack and data breach that resulted in hackers gaining access to...
View ArticleBipartisan Legislation Introduced to Modernize Health Data Privacy Laws
Healthcare privacy laws in the United States are due an update to bring them into the modern age to ensure individually identifiable health information is protected no matter how it is collected and...
View ArticleJanuary 2022 Healthcare Data Breach Report
50 healthcare data breaches of 500 or more records were reported to the HHS’ Office for Civil Rights (OCR) in January 2022. January was the second successive month where the number of reported data...
View ArticleNCCoE Releases Final Version of NIST Securing Telehealth Remote Patient...
The National Cybersecurity Center of Excellence (NCCoE) has published the final version of NIST guidance on Securing Telehealth Remote Patient Monitoring Ecosystem (SP 1800-30). Healthcare delivery...
View ArticleOCR Director Encourages HIPAA-Regulated Entities to Strengthen Their...
In a recent blog post, Director of the HHS’ Office for Civil Rights, Lisa J. Pino, urged HIPAA-regulated entities to take steps to strengthen their cybersecurity posture in 2022 in light of the...
View ArticleWhat is Considered PHI Under HIPAA?
In a healthcare environment, you are likely to hear health information referred to as protected health information or PHI, but what is considered PHI under HIPAA? What is Considered PHI Under HIPAA...
View ArticlePoor Employee Cyber Hygiene is Putting Healthcare Cybersecurity at Risk
There have been calls for healthcare organizations to take steps to improve security due to a major rise in hacking incidents, ransomware attacks, and vulnerability disclosures in 2021. Record numbers...
View ArticleHC3 Report Reveals Cyberattack Trends and Provides Insights to Improve...
The HHS’ Health Sector Cybersecurity Coordination Center has released a new report – Health Sector Cybersecurity: 2021 – Retrospective and 2022 Look Ahead – that provides a retrospective look at...
View ArticleWarning Issued About Access:7 Vulnerabilities Affecting IoT and Medical Devices
A group of vulnerabilities dubbed Access:7 have been identified in the web-based technologies PTC Axeda and Axeda Desktop Server which are used to allow one or more people to securely view and operate...
View ArticleBreach Barometer Report Shows Over 50 Million Healthcare Records Were...
Protenus has released its 2022 Breach Barometer Report which confirms 2021 was a particularly bad year for healthcare industry data breaches, with more than 50 million healthcare records exposed or...
View ArticleDOJ Settles Civil Cyber Fraud Initiative Case with CHS and Imposes a $930,000...
The U.S. Department of Justice (DOJ) has announced a settlement has been reached with the Cape Canaveral, FL-based healthcare services contractor, Comprehensive Health Services (CHS), to resolve...
View ArticleOCR: HIPAA Security Rule Compliance Can Prevent and Mitigate Most Cyberattacks
Healthcare hacking incidents have been steadily rising for a number of years. There was a 45% increase in hacking/IT incidents between 2019 and 2020, and in 2021, 66% of breaches of unsecured...
View Article