By Lance Reid – Who doesn’t love a plan? Leaders love plans to set a positive course for their businesses. I love plans, too. Sales plans. Cybersecurity plans. Employee development plans. Business continuity plans. Plans help executives and team leaders get on the same page and move forward in a common, predetermined direction.
Read More
By Matt Fisher – Apparently the Office for Civil Rights does still have older resolved HIPAA concerns in its hopper to release. The latest release about a civil monetary penalty continues the ongoing enforcement focus on the right of access.
By Zac Amos – Telehealth has revolutionized health care, offering convenience and accessibility for providers and patients. However, with the shift to virtual care comes a critical responsibility — ensuring the security and privacy of patient information.
By Matt Fisher – The Office for Civil Rights announced another cyber incident driven HIPAA civil monetary penalty on February 20, 2025. The settlement broke a one month lull in HIPAA enforcement announcements, though looking at the dates in the documents (all go back to the last quarter or so of 2024), it may not necessarily be an indication that enforcement of HIPAA remains an ongoing immediate priority.
By Lance Reid – Phishing attempts can happen at any time and to anyone within an organization. As threat vectors continue to multiply and AI becomes more powerful, attempts to extract information in order to instigate a hack or ransomware attack will only increase.
By Usman Choudhary – Healthcare data security is among the most pressing challenges in today’s interconnected world, primarily because digital transformation exposes sensitive patient information to the risk of breaches and cyberattacks.
By Matt Fisher – Prior to the changeover of the administration, the HHS Office for Civil Rights went on a bit of a HIPAA settlement bender. The fast pace of announced settlements felt a bit like a clearing of the decks. The various settlements continued recent trends around the issues being selected by OCR for settlement along with the still random amount of settlements.
By Matt Fisher – On January 6, 2025, the Department of Health and Human Services officially published a notice of proposed rulemaking to modify and update the HIPAA Security Rule. The timing of the proposed rule leaves any sort of immediate action with a lot of uncertainty (changing administrations bring changing priorities and delays).
By Lance Reid – I’ve spent years in the trenches of IT security, and I’m here to tell you that a multi-layered security approach and some practical strategies can make a world of difference. Here are four essential ways to bolster your defenses.