House of Representatives Reviews the Healthcare Cybersecurity Act
The introduction of the bipartisan Senate bill known as the Healthcare Cybersecurity Act was a response to the Change Healthcare ransomware attack and presently has ...
Read moreCompliance
Answers Required from DOL Regarding State Agencies’ Surprise Inspections
Two House Democrats wrote to Department of Labor (DOL) Acting Labor Secretary Julie Su requiring replies regarding allegations that California and South Carolina Occupational Safety ...
Read more
$115K Civil Monetary Penalty Paid by American Medical Response for HIPAA Violation
American Medical Response (AMR), a private ambulance provider, paid $115,200 to the HHS’ Office for Civil Rights (OCR) as a civil monetary penalty to take ...
Read more
Changes to HHS Mangament of Technology, Cybersecurity, Information, AI, and HealthIT
The Department of Health and Human Services (HHS) has reported a restructuring that will enable the department to improve its operations and more efficiently prioritize ...
Read more
PHI Exposed in HealthEquity Cyberattack
Financial technology and business services provider HealthEquity based in Draper, UT encountered a cyberattack that exposed SharePoint data, including protected health information (PHI). HealthEquity offers ...
Read more
Cyber Fire Drills: A New Tool to Fight Healthcare Cyberattacks
Healthcare is under constant cyberattack by malicious actors. Nearly 6,000 healthcare data breaches that have been reported to the HHS Office for Civil Rights (OCR) between ...
Read more
Guidance Sought on Notification Requirements Related to the Change Healthcare Data Breach
CHIME and some healthcare provider organizations wrote to Melanie Fontes Rainer, the Office for Civil Rights (OCR) Director, for clarity and information for physicians and ...
Read more
PHI of 175,195 Patients Exposed in South Texas Oncology and Hematology Cyberattack
Cancer treatment center South Texas Oncology and Hematology (STOH) based in San Antonio, TX has informed 176,303 patients about a cyberattack discovered on February 15, ...
Read more
ComplianceJunction HIPAA Training Course Receives AHIMA Approval
The Health Insurance Portability and Accountability Act (HIPAA) applies to healthcare providers health plans, healthcare clearinghouses, and their business associates. HIPAA has important privacy and ...
Read more
UHG Required to Send Breach Notifications Involving Change Healthcare Not Later Than June 21, 2024
On June 7, 2024, Senators Marsha Blackburn (R-TN) and Maggie Hassan (D-NH) sent a letter to UnitedHealth Group CEO Andrew Witty telling him to issue ...
Read more
FBI Recovers 7,000 Decryption Keys Through Operation Cronos
The Federal Bureau of Investigation (FBI) advises LockBit ransomware attack victims to contact the Internet Crime Complaint Center (IC3). The FBI has secured over 7,000 ...
Read more
Email Accounts Compromised at Children’s Health Care
Children’s Health Care in Minneapolis, MN, doing business as Children’s Minnesota, found out that patients’ protected health information (PHI) was compromised in an email security ...
Read more
Patient Information Exposed Due to Superior Air-Ground Ambulance Service Data Breach and a Stolen TimeDoc Laptop
PHI of 858K Individuals Exposed in Superior Air-Ground Ambulance Service Data Breach Superior Air-Ground Ambulance Service provides ambulance and Emergency Medical Services (EMS) in Michigan, ...
Read more
Potential Cyberattacks on Ascension, Palomar Health Medical Group and Georgia Institute for Plastic Surgery
Ascension Cyberattack Investigation Ascension, the biggest nonprofit and Catholic health system in America, stated it is looking into a suspected cyberattack that has interrupted clinical ...
Read more
Health Data Analytics Company Submits 1.1-Million Record Data Breach Report
Berry, Dunn, McNeil & Parker, LLC (BerryDunn), an accounting and consulting company based in Portland, ME filed a data breach report with the Maine Attorney ...
Read more
PHI Exposed in Moffitt Cancer Center and Los Angeles County Department of Health Services Cyberattacks
Moffitt Cancer Center Impacted by the Advarra Data Breach Moffitt Cancer Center reported a data security breach that occurred at Advarra. Advarra is Moffitt Cancer ...
Read more
Value of Strong Cybersecurity Programs and Guidance on Informed Consent Requirements
Companies with Strong Cybersecurity Programs Get Higher Returns for Shareholders Investing in cybersecurity measures aids in preventing data breaches, and evading regulatory penalties. According to ...
Read more
HIPAA Security Audit
A HIPAA security audit can help covered entities and business associates identify threats to the confidentiality of Protected Health Information and remedy gaps in security ...
Read more
Cyberattacks and Data Breaches Reported by Ernest Health Hospitals, Wyndemere Senior Care, Baylor College of Medicine and Harvard Pilgrim Health Care
Patient Data Theft from Several Ernest Health Hospitals Ernest Health manages rehabilitation and long-term acute care hospitals located in Arizona, Colorado, California, Indiana, Idaho, Montana, ...
Read more
Is it Possible to Have HIPAA Compliant Gmail?
It is possible to have HIPAA compliant Gmail if you subscribe to a Google Workspace account that supports HIPAA compliance, if the products included in ...
Read more
OCR Opens HIPAA Compliance Investigation of Change Healthcare
The HHS’ Office for Civil Rights started the investigation of Change Healthcare three weeks after its cyberattack on February 21, 2024. Usually, OCR’s cyberattack and ...
Read more
Survey Finds Change Healthcare Cyberattack Impacting Hospital Finances and Patient Care Access
The recent cyberattack on Change Healthcare, a subsidiary of UnitedHealth Group, has sent affected the U.S. healthcare system greatly, marking it as one of the ...
Read more
Is Zelle HIPAA Compliant?
Zelle is not required to be HIPAA compliant due to a clause in the text of HIPAA that exempts payment processors from complying with HIPAA. ...
Read more
Legislative Revisions to Enhance Health Data Privacy
Senator Bill Cassidy (R-LA), who is a member of the U.S. Senate Health, Education, Labor, and Pensions (HELP) Committee, has filed a white paper that ...
Read more
Change Healthcare Faces Lawsuit While Personal Touch Holding Corp Settles Lawsuit
Multiple Class Action Lawsuits Against Change Healthcare Due to Ransomware Attack On February 21, 2024, Change Healthcare encountered a Blackcat ransomware attack and has not ...
Read more
Half the Population of France Affected by Data Breaches at Healthcare Payment Processors
The French Data Protection Agency, CNIL, is investigating two data breaches at healthcare payment processors that have affected around 33 million individuals –almost half the ...
Read more
February 2024 Patch Tuesday: Microsoft Patches 73 Flaws; 2 0Days
Microsoft has released patches to fix 73 flaws across its product suite on February 2024 Patch Tuesday, including 2 zero-day bugs that are being actively ...
Read more
Why Cybercriminals Target the Healthcare Sector and Why We Should Care
According to the HHS Office for Civil Rights, 2023 saw more than 116 million personal patient records compromised across 655 breaches. When personal identifiable information ...
Read more
Popular Password Manager Starts Enforcing 12-Character Master Passwords
While there are different schools of thought on password complexity, security experts agree that when it comes to making passwords difficult to guess, the longer ...
Read more
7 Facts about Security Breaches in Healthcare
Security breaches in healthcare are on the increase; and, although there has been a decline in the average number of records exposed per security breach, ...
Read more