Security Breaches May 15, 2017 Sophos Issues Guidance on WannaCry Ransomware Sophos has released guidance on WannaCry ransomware, explaining how the attacks occurred, why these attacks were different from other ransomware incidents and how the company ... Read more
Security Breaches May 13, 2017 Worldwide WannaCry Ransomware Attacks Reported There has been a massive spike in worldwide WannaCry ransomware attacks, with a new campaign launched on Friday. In contrast to past WannaCry ransomware attacks, ... Read more
Compliance May 11, 2017 Memorial Hermann Health System HIPAA Fine Issued for Improper Disclosure of PHI An unauthorized disclosure of a patient’s name has resulted in a Memorial Hermann Health System HIPAA compliance fine. The U.S. Department of Health and Human ... Read more
Compliance May 10, 2017 New Mexico HIPAA Violation Lawsuit Heads to NM Supreme Court A New Mexico HIPAA violation lawsuit filed by the victim of a sexual assault whose identity was improperly disclosed has been referred to the Supreme ... Read more
Compliance May 9, 2017 True Health Diagnostics Website Flaw Exposes Patient Records The health reports of patients of the True Health Group have been exposed online and were viewable by other patients for months – most likely ... Read more
Compliance May 9, 2017 Motion Filed to Dismiss ‘Baseless’ MDLive HIPAA Lawsuit A motion has been submitted to dismiss a MDLive HIPAA lawsuit that was filed b y a plaintiff who alleges the firm improperly disclosed protected ... Read more
Trends & Reports May 8, 2017 NIST Small Business Cybersecurity Act of 2017 Approved by House Committee The NIST Small Business Cybersecurity Act of 2017 has been approved by the U.S. House Committee on Science, Space, and Technology. The new act requires ... Read more
Trends & Reports April 25, 2017 Risk Analysis and Risk Management Errors Results in $2.5 Million HIPAA Settlement Risk analysis and risk management errors have resulted in a $2.5 million HIPAA compliance penalty for CardioNet, a provider of remote mobile monitoring and rapid ... Read more
Cyber Threats April 25, 2017 Webroot Antivirus Update Problems Mount: Servers, PCs and Apps Crippled Webroot antivirus update problems are mounting with many thousands of the company’s customers experiencing severe issues after installing an April 24 update. Customers who had ... Read more
Compliance April 21, 2017 HIPAA Rules on Business Associate Agreements This week, the HHS’ Office for Civil Rights (OCR) sent a warning to covered entities about the need to ensure HIPAA compliance rules on business ... Read more
Tools & Practices April 21, 2017 $31,000 HIPAA Penalty for a Business Associate Agreement Violation The Department of Health and Human Services’ Office for Civil Rights has issued a $31,000 HIPAA penalty for a business associate agreement violation to The ... Read more
Cyber Threats April 20, 2017 Employee Security Awareness is the Biggest Healthcare Data Security Threat Hackers continue to target healthcare organizations, malware is a constant threat, and ransomware continues to pose many problems, but when it comes to the biggest ... Read more
Compliance April 20, 2017 Automated Solution Searches Dark Web for Stolen Healthcare Data Hackers are targeting healthcare organizations and are breaking through defenses and stealing data. Healthcare data carries a high value on the black market and the ... Read more
Compliance April 18, 2017 March Sees Increase in Healthcare Data Breaches and Victim Count This year has seen healthcare data breaches remain steady for the first couple of months, although March saw the number of incidents rise and the ... Read more
Trends & Reports April 13, 2017 Companies Wasting Money on Unused Cloud Capacity There are many benefits to switching to cloud computing, although one of the most important reasons for switching to the cloud is to save money. ... Read more
Tools & Practices April 13, 2017 Are HIPAA Rules Outdated and is an Update Overdue? Are HIPAA Rules outdated? Is an update long overdue? An article recently published in the journal JAMIA explores potential updates to HIPAA to keep the ... Read more
Compliance April 13, 2017 Security Management Process HIPAA Violations Resolved with $400,000 OCR Settlement Yesterday, the Department of Health and Human Services’ Office for Civil Rights (OCR) announced that a $400,000 settlement had been agreed with Metro Community Provider ... Read more
Compliance April 12, 2017 Suspected Ransomware Attack Impacts Erie County Medical Center Patients It has been a bad month for healthcare industry ransomware attacks and malware infections. A ransomware attack on Ashland Women’s Health was confirmed this week ... Read more
Compliance April 12, 2017 Ashland Women’s Health Ransomware Attack Confirmed The ransomware attacks on healthcare providers are continuing, with one of the latest victims a small one-practitioner gynecology practice in Ashland, Kentucky. Ashland Women’s Health ... Read more
Compliance April 11, 2017 Philadelphia Ransomware Used in Targeted Attacks on US Hospitals Cybercriminals are conducting targeted attacks on U.S. healthcare organizations using Philadelphia ransomware; a relatively new ransomware variant developed from Stampedo ransomware. Philadelphia ransomware was first ... Read more
Compliance April 6, 2017 Study Analyses Hospital Data Breach Risk A recent study published in JAMA Internal Medicine looked at the hospital data breach risk and determined which organizations are most at risk of experiencing ... Read more
Tools & Practices April 5, 2017 OCR Issues Warning to Healthcare Providers on Use of HTTPS Inspection Tools Many healthcare organization use HTTPS inspection tools to monitor HTTPS connections for malware. HTTPS inspection tools decrypt secure HTTPS network traffic and review content before ... Read more
Compliance April 5, 2017 Ransomware Attack on ABCD Pediatrics Impacts 55,000 Patients The protected health information of more than 55,000 patients has potentially been compromised in a recent ransomware attack on ABCD Pediatrics. Attackers gained access to ... Read more
Cyber Threats April 4, 2017 74% of Organizations Vulnerable to Insider Threats Spending on cybersecurity defenses has increased to reduce the risk of attacks by cybercriminals, yet organizations still feel vulnerable to insider threats. Furthermore, insider threats ... Read more
Trends & Reports April 3, 2017 SkyKick Cloud and Migration Suites Certified as HIPAA-Compliant Cloud management solution provider SkyKick has been awarded HIPAA Privacy Shield Certification for two of its software products for IT solution partners: SkyKick Cloud and ... Read more
Compliance April 3, 2017 Black Book of Cybersecurity Ranks PhishLabs Highest for Cybersecurity Client Experience At the recent InfoSec World Conference and Exhibition in Orlando, Black BookTM of Cybersecurity LLC ranked PhishLabs highest in the category of Cybercrime Threat Intelligence for ... Read more
Tools & Practices March 30, 2017 40% of Second-Hand Devices Found to Contain PII The danger of failing to ensure mobile devices have all data securely wiped before being recommissioned or resold has been highlighted by a recent study ... Read more
Tools & Practices March 30, 2017 Mecklenburg County HIPAA Violation Prompts Policy Update A recently discovered Mecklenbury County HIPAA violation has infuriated county officials. An investigation has now been conducted to determine how HIPAA Rules were so easily ... Read more
Compliance March 29, 2017 New Resource Provides HIPAA Help for mHealth Developers A new online tool has been released by the Connected Health Initiative providing HIPAA help for mHealth developers and healthcare providers. The new tool – ... Read more
Tools & Practices March 29, 2017 ONC Updates SAFER Guides to Assist HIPAA-Covered Entities with EHR Safety and Security The Office of the National Coordinator for Health IT (ONC) has released updated versions of its SAFER Guides. The series of guides provide useful information ... Read more