By Art Gross – A recent investigation by the OCR alleges that several security guards from Yakima Valley Memorial Hospital impermissibly accessed the medical records of 419 individuals. This incident highlights the importance of maintaining strict protocols and vigilant oversight.
Read More
By Matt Fisher – Snooping into medical records is a long established privacy concern. It is one of the classic examples of how a data breach can occur because it trades on an individual’s natural curiosity that must be contained. Despite snooping being a widely known concern, it still occurs.
By Candida Valois – The nation’s cybersecurity strategy underscores the imperative for healthcare organizations to make bold changes and significant improvements in health data protection. A study by JAMA found that from 2016 to 2021, cyberattacks on healthcare organizations more than doubled.
By Troy Ament – The exponential growth of IoT and medical devices has increased the attack surface of these systems. Ransomware attacks continue to grow in volume and scale, with increased impact to connected medical devices, patient care/safety, and exposure to large global integrated health delivery systems.
By Art Gross – Recent research conducted by Arete and Cyentia Institute sheds light on the ransomware landscape within the healthcare sector. The study reveals that healthcare organizations are more likely to pay ransoms than other industries.
By Matt Fisher – Social media and healthcare can be a productive combination, but not when patient information is involved. The power and reach of social media are nothing new, nor is the concern about the ready ability to spread misinformation.
By Matt Fisher – The scope of actual and proposed privacy regulators, laws, requirements, processes, and more keep expanding. The expansion is occurring at both the federal and state level resulting in an ever-increasing patchwork of requirements for organizations to be aware of and comply with.
By Art Gross – A recent incident involving Arkansas-based MedEvolve serves as a reminder of the consequences that arise from the mishandling of PHI and the importance of healthcare businesses ensuring that they and their business associates are HIPAA compliant.
By Art Gross – The Office for Civil Rights 90-day transition period commenced on May 12, 2023. As a HIPAA compliance company, we understand the importance of staying up-to-date with regulatory changes. Let’s delve into the transition period and its significance, and provide guidance on how your organization can ensure seamless compliance in this evolving landscape.