By Art Gross – In a watershed moment for the healthcare industry, the U.S. Department of Health and Human Services’ Office for Civil Rights, recently finalized a $100,000 settlement with Doctors’ Management Services, a Massachusetts-based medical management company.
Read More
By Art Gross – In the interconnected world of healthcare, where data is both invaluable and vulnerable, the rise of social engineering attacks poses a significant threat. Beyond sophisticated software and firewalls, cybercriminals often exploit the human element to gain unauthorized access to sensitive information.
By Matt Fisher – The Office for Civil Rights is stepping up its attention to cyberattacks impacting healthcare organizations. After years of attacks impacting operations and the privacy of patient information, OCR is now flexing its HIPAA enforcement muscles on that front.
By Angela Fitzpatrick – Cyberattacks on healthcare organizations and their business associates continue to increase at an alarming rate, with nearly 500 breaches affecting 500 or more individuals each reported to the U.S. Department of Health and Human Services Office for Civil Rights between January and November 2023.
Our annual predictions for 2024 continues with Privacy, Security, Compliance. Throughout the next few weeks we will be asking the industry experts what they think we will see in 2024. Check back as we cover AI, value-based care, interoperability, privacy, security, access, and equality.
By David Finn – It is very difficult to talk about 2024 without starting from where we are ending 2023. We only need to go back to Thanksgiving to paint the picture of healthcare cybersecurity in 2023. Over Thanksgiving weekend, a single ransomware attack left 30 hospitals across 6 states without network services.
The HHS released a concept paper that outlines the Department’s cybersecurity strategy for the health care sector. The concept paper builds on the National Cybersecurity Strategy that President Biden released last year, focusing specifically on strengthening resilience for hospitals, patients, and communities threatened by cyber-attacks.
By Art Gross – Back in the day, physical safeguards were all we had to protect patient files. In today’s world where most information is stored digitally, a filing cabinet and key can no longer do the trick. The utilization of data encryption stands as one of the most fundamental and effective methods to ensure the confidentiality and integrity of sensitive patient information.
By Art Gross – “You’ve been breached”: three words that no business owner ever wants to hear, but for which they should be prepared. Data breaches have become an unfortunate reality for many organizations, especially those in the healthcare industry. Protecting sensitive patient information is not just a matter of compliance; it’s a crucial component of maintaining trust and reputation.