by ComplianceJunction | Dec 27, 2018 | CCPA News, Cybersecurity
Impact of CCPA on Business The Californian Governor Jerry Brown signed the Californian Consumer Privacy Act (CCPA) into law in June 2018. The CCPA has revolutionised the data privacy rights of Californian residents. CCPA offers new rights to consumers over their data...
by Patrick Kennedy | Dec 27, 2018 | Cybersecurity, HIPAA News
A new study by the consultancy firm Censuswide has revealed the extent to which employees are being tricked by phishing emails and how despite the danger of a data breaches and regulatory fines, many firms are not providing security awareness training to their staff....
by Patrick Kennedy | Dec 24, 2018 | HIPAA News
Following the installation of ransomware and malware on a server belonging to Mind & Motion Developmental Centers of Georgia, it has been revealed that the group responsible which may have been able to access to 16,000 patients protected health information. The...
by Patrick Kennedy | Dec 20, 2018 | HIPAA News
Almost 48,000 patients and guarantors may had their the payment information compromised Baylor Scott & White Medical Center in Frisco in a privacy breach which was noticed recently. The medical center, which is jointly operated by United Surgical Partners...
by Patrick Kennedy | Dec 17, 2018 | HIPAA News
6,450 patients of Prairie Fields Family Medicine based in Fremont, NE are being made aware that their protected health information may have been compromised after it was included in an unencrypted spreadsheet that was sent to the incorrect email recipient. The email...
by Patrick Kennedy | Dec 13, 2018 | Cybersecurity, HIPAA Advice
The winners of the Easy EHR Issues Reporting Challenge have been announced by the Department of Health and Human Services’ Office of the National Coordinator for Health Information Technology (ONC). At present, reporting EHR safety concerns is a tiresome process that...
by Patrick Kennedy | Dec 10, 2018 | HIPAA News
Cancer Centers of America’s Western Regional Medical Center, located in Bullhead City, has revealed that a staff email account has been hacked following a phishing email attack. The phishing email seems to have been broadcast from the staff email account of a Cancer...
by Patrick Kennedy | Dec 5, 2018 | HIPAA News
Georgia Spine and Orthopaedics of Atlanta (GSOA) is contacting thousands of patients to make them aware that some of their protected health information has been made accessible, and possibly stolen, due to a phishing attack. An inquest into the data breach showed that...
by Patrick Kennedy | Dec 3, 2018 | HIPAA News
AccuDoc Solutions Inc., a supplier of healthcare billing services, has discovered a major data privacy breach in which the protected health information of 2,650,000 patients of Atrium Health was accessed by hackers. Morrisville, NC-based AccuDoc Solutions puts...
by Patrick Kennedy | Nov 28, 2018 | HIPAA News
FHN Healthcare, which runs FHN Memorial Hospital in Freeport, IL, and a group of family healthcare centers located in northwest Illinois, has discovered that a laptop computer storing the protected health information of 4,458 clients has been stolen from the car of a...
by Patrick Kennedy | Nov 26, 2018 | Cybersecurity, HIPAA News
Florida-based Key Dental Group has made contact with its patients about a suspected HIPAA breach which may have led to the unauthorized release of their protected health information (PHI). After amended its electronic medical record (EMR) database supplier, Key...
by Patrick Kennedy | Nov 21, 2018 | HIPAA News
In October, the Centers for Medicare & Medicaid Services (CMS) revealed that the HealthCare.gov online portal had been hacked and the sensitive data of around 75,000 individuals had possibly been obtained. This week, the CMS released an update on the privacy...
by Patrick Kennedy | Nov 19, 2018 | HIPAA News
Vancouver, Washington, based Southwest Washington Regional Surgery Center has been hit by a phishing attack that has lead to the exposure of 2,393 patients’ protected health information. The breach was restricted to a single staff email account and no proof was found...
by Patrick Kennedy | Nov 15, 2018 | HIPAA News
Virginia based Inova Health System has started to contact 12,331 patients to advise them that some of their protected health information has been obtained by an unauthorized person. Law enforcement contacted Inova Health System on September 5, 2018 in relation to a...
by Patrick Kennedy | Nov 12, 2018 | HIPAA News
Upstate University Hospital in Syracuse, NY, is getting in touch with 1,216 patients to advise them that some of their protected health information (PHI) has been impermissibly accessed by a former member of staff. Upstate University Hospital first identified the...
by Patrick Kennedy | Nov 8, 2018 | HIPAA Advice
A $200,000 settlement has been agreed with Best Medical Transcription in relation to HIPAA breaches that were discovered during an investigation of a 2016 breach of 1,650 clients’ protected health information. Best Medical Transcription, a business associate of Virtua...
by Patrick Kennedy | Nov 5, 2018 | Cybersecurity, HIPAA News
According to the most recent Beazley’s Q3 Breach Insights Report, Cyber Criminal campaigns attacks are increasing once again and healthcare is the most targeted sector. Ransomware attacks on healthcare groups comprised 37% of those managed by Beazley Breach Response...
by Patrick Kennedy | Oct 31, 2018 | HIPAA News
Around 10,000 patients of Raley’s Pharmacy are being contacted to inform them that some of their protected health information (PHI) has potentially been impacted in a data breach. On September 24, 2018, a laptop computer was taken from a Raley’s pharmacy that may have...
by Patrick Kennedy | Oct 29, 2018 | HIPAA News
Jones Eye Clinic and its affiliated surgery center, CJ Elmwood Partners, L.P, in Sioux City, IA has revealed that the protected health information of up to 40,000 of its patients may have been compromised.The private data breach occurred following a ransomware attack...
by Patrick Kennedy | Oct 25, 2018 | HIPAA News
Michigan Medicine is contacting over 3,600 patients to make them aware of an impermissible disclosure of a restricted amount of their protected health information. In early September 2018, the Michigan Medicine Development Office initiated a fundraising campaign that...
by Patrick Kennedy | Oct 22, 2018 | Cybersecurity, HIPAA News
The U.S. Food and Drug Administration (FDA) has released a warning about flaws in certain Medtronic implantable cardiac device programmers which could possibly be targeted by hackers to alter the functionality of the programmer during implantation or follow up visits....
by Daniel Lopez | Oct 19, 2018 | HIPAA Advice
HIPAA-covered organizations must take every possible precaution to ensure protected health information (PHI) sent and received by email is safeguarded both at rest and in transit in order to prevent unauthorized access to patient data. Many organizations opt to use...
by Patrick Kennedy | Oct 17, 2018 | HIPAA News
Biomarin Pharmaceutical, based in Novato, CA-based has discovered two staff email accounts have been compromised due to a phishing attack in which a non-permanent employee’s login details were obtained by the hacker. The attack was noticed on June 21, 2018 and swift...
by Patrick Kennedy | Oct 14, 2018 | HIPAA News
Letters have been mailed to approximately 21,000 individuals on medical assistance by the Minnesota Department of Human Services to alert them of a potential breach of their protected health information (PHI) due to two phishing campaigns which took place recently....
by Patrick Kennedy | Oct 10, 2018 | Cybersecurity, HIPAA News
The Department of Health and Human Services’ Office of Inspector General (HHS OIG) is highlighting awareness of the measures it implements to address cyberthreats within the HHS and the healthcare sector as a whole and is implementing measure to raise transparency of...
by Patrick Kennedy | Oct 8, 2018 | HIPAA News
A data breach, that saw the highly sensitive protected health information of 93 lower-income HIV positive individuals stolen by unauthorized individuals, will go to trial after a lawsuit submitted by Lambda Legal on behalf of a victim survived a motion to dismiss....
by Daniel Lopez | Oct 5, 2018 | HIPAA Advice
It is vital for all staff members in the healthcare sector to have a firm grasp of what a HIPAA violation is and how to report one. Understanding what a HIPAA violation entails should be included in HIPAA training, as should the correct individual to direct a report...
by Patrick Kennedy | Oct 3, 2018 | HIPAA News
A not-for-profit 115-bed community hospital in Ogdensburg, NY, Claxton-Hepburn Medical Center has sacked several employees for accessing patient health records without official permission.The PHI breaches were identified during an internal review. It is not yet...
by Patrick Kennedy | Oct 1, 2018 | Cybersecurity, HIPAA News
Uber, the peer-to-peer ridesharing, taxi cab, food delivery, bicycle-sharing and transportation network company has settled a fine in relation to a 2016 cyber-attack that exposed data from 57 million customers and drivers for $148m. The payment in question settles the...
by Patrick Kennedy | Sep 27, 2018 | HIPAA News
Blue Cross and Blue Shield of Rhode Island (BCBSRI) is contacting 1,567 plan subscribers that a portion of their protected health information has been impermissibly made accessible by one of its business partners. A BCBSRI vendor was hired to issue explanation of...
by Patrick Kennedy | Sep 24, 2018 | HIPAA News
A former staff member of the emergency department of Brooklyn’s Kings County Hospital is accused of stealing the protected health information of at least 100 patients while employed there. The same person is accused of sharing this information to another individual...
by Patrick Kennedy | Sep 19, 2018 | Cybersecurity
The New York Attorney General has fined the Arc of Erie County $200,000 by breaching HIPAA Rules when it did not secure the electronic protected health information (ePHI) of its customers. The Arc of Erie County, a nonprofit social services agency and chapter of the...
by Patrick Kennedy | Sep 19, 2018 | Cybersecurity
Several studies have been conducted to assess the cost of cybercrime in the United States, although there is little data on the cost of cyberattacks in Germany. That has been addressed with a recent survey that sought to assess the extent to which German firms are...
by Patrick Kennedy | Sep 17, 2018 | HIPAA News
Honolulu-based Fetal Diagnostic Institute of the Pacific (FDIP) was hit by a ransomware attack on June 30 this year. File-encrypting software was uploaded to an FDIP server and encrypted a wide range of file types some of which were patient medical records. FDIP...
by Patrick Kennedy | Sep 12, 2018 | HIPAA News
Reliable Respiratory, a Norwood, MA-based respiratory care organisation has been subjected to a phishing attack that has impacted several thousand of its clients. A cyberattack was first noticed on July 3, 2018, after the detection of unusual activity in an staff...
by Patrick Kennedy | Sep 10, 2018 | HIPAA News
The New Mexico Department of Health is trying to ascertain how the private medical records of some of its clients came to fall from a truck while being taken from the hospital to a secure storage center. The records originated at Turquoise Lodge Hospital, a...
by Daniel Lopez | Sep 6, 2018 | HIPAA Advice
The Health Insurance Portability and Accountability Act (HIPAA) brought in many new regulations for healthcare groups, but who polices HIPAA? Which federal departments are charged with making sure HIPAA Rules are adhered to by covered bodies and their business...
by Patrick Kennedy | Sep 6, 2018 | GDPR Advice
by Patrick Kennedy | Sep 6, 2018 | HIPAA News
A mailing mistake that was sent to Missouri Care subscribers reminding them to reserve well-child visits has resulted in the accidental disclosure of the personal data of approximately 20,000 children to other Missouri Care subscribers. The personal information...
by Patrick Kennedy | Sep 3, 2018 | HIPAA News
Authentic Recovery Center, a West Los Angeles-based drug and alcohol treatment center, is contacting 1,790 clients to inform them that some of their personally identifiable information (PII) and protected health information (PHI) may have been stolen by an...
by Daniel Lopez | Aug 31, 2018 | HIPAA Advice
Many healthcare groups have considered the Zoho Office Suite as an alternative software package to organize workflows, but can Zoho be deemed HIPAA compliant? Zoho: What is it? Based in Pleasanton, CA Zoho is developer of cloud applications and web-based utilities...
by Patrick Kennedy | Aug 29, 2018 | HIPAA News
A survey carried out by Ovum for analytics firm FICO has pointed to the fact that there has been a sharp rise in companies signing up for cybersecurity insurance, but the healthcare sector in general has been slow to follow this trend. In 2017 when the previous survey...
by Patrick Kennedy | Aug 27, 2018 | HIPAA News
Central Colorado Dermatology (CCD) has made contact with over 4,000 clients that some of their protected health information (PHI) has possibly been obtained by cyber criminals during a ransomware attack on its IT systems. An unauthorized person obtained access to...
by Patrick Kennedy | Aug 24, 2018 | HIPAA Advice
Most HIPAA covered bodies, business associates, and healthcare workers take lots of precautions care to ensure HIPAA Rules are adhered to, but what happens when there is accidental HIPAA violation? How should healthcare workers, covered bodies, and business associates...
by Patrick Kennedy | Aug 23, 2018 | HIPAA News
InterAct of Michigan, a provider of mental health and substance abuse treatments through health centers in Kalamazoo and Grand Rapids, has found an unauthorized person has obtained access to the email account of a staff member and may have viewed and copied the...
by Patrick Kennedy | Aug 20, 2018 | HIPAA News
Over 258,000 people have had their personal health information, personal identification information and/or tax information accessible online due to a data security incident in Adams County, Wisconsin. A possible security breach was discovered on March 28, 2018 after...
by Patrick Kennedy | Aug 16, 2018 | HIPAA News
A group of urgent care clinics in Atlanta, Chicago, Austin, Dallas, Fort Worth, and Houston, MedSpring Urgent Care has identified a breach that occurred when an unauthorized individual has gained access to an email account due to an employee being tricked by a...
by Patrick Kennedy | Aug 13, 2018 | HIPAA News
Jefferson City, Missouri based SSM Health St. Mary’s Hospital is contacting hundreds of thousands of patients to warn them that some of their protected health information has been left unprotected and may have have been accessed by unauthorized parties. On November...
by Daniel Lopez | Aug 10, 2018 | HIPAA Advice
The Health Insurance Portability and Accountability Act (HIPAA) is a landmark piece of data protection legislation in the USA. What is it that makes HIPAA so significant? What reform did HIPAA bring in and what are the benefits to the healthcare sector and patients?...
by Patrick Kennedy | Aug 10, 2018 | GDPR Advice
by Patrick Kennedy | Aug 8, 2018 | HIPAA Advice
A not-for-profit health system that operates Central Washington Hospital, Wenatchee Valley Hospital and a dozen satellite clinics in Central and North Central Washington, has experienced a data breach incident involving a staff member’s email account that may have...
by Patrick Kennedy | Aug 5, 2018 | HIPAA News
A huge UnityPoint Health phishing attack has been reported to the HHS’ Office for Civil Rights (OCR) , one in which the protected health information of up to 1.4 million patients could have been obtained by cyber criminals. So far, this phishing incident is the...
by Patrick Kennedy | Aug 3, 2018 | HIPAA News
A mistake has resulted in the exposure of more than 19,000 patients’ protected health information (PHI) took place during a software upgrade on a server owned by a transcription service provider. Patients impacted by the breach had attended Orlando Orthopaedic Center...
by Daniel Lopez | Aug 2, 2018 | HIPAA Advice
Does Azure comply with HIPAA? Can Microsoft’s cloud services be implemented by HIPAA covered bodies without breaching HIPAA Rules? Many healthcare groups are considering shifting some of their services to the cloud, and a large number already have. The cloud provides...
by Patrick Kennedy | Jul 30, 2018 | HIPAA News
A class action lawsuit submitted after a staff-member related data breach at Flowers Hospital in Dothan, Alabama in 2014 is likely to be settled. The settlement is awaiting final court approval, although approval seems imminent and a resolution to this four-year legal...
by Daniel Lopez | Jul 28, 2018 | HIPAA Advice
The Federal Communication Commission has released a Declaratory Ruling and Order to clarify TCPA rules in relation to HIPAA and patient telephone calls. Some healthcare suppliers have had difficulty understanding TCPA rules in relation to HIPAA and patient telephone...
by Patrick Kennedy | Jul 26, 2018 | HIPAA News
AK-based billing company, Golden Heart Administrative Professionals, a Fairbanks is alerting 44,600 people that some of their protected health information has potentially been obtained by unauthorized people due a recent ransomware attack. The ransomware was placed on...
by Patrick Kennedy | Jul 20, 2018 | HIPAA News
An employee’s email account, that contained the protected health information of approximately 8,400 patients of Billings Clinic in Billings, MT has been illegally accessed. The breach was discovered by the clinic’s cybersecurity systems on May 14, 2018, with...
by Daniel Lopez | Jul 19, 2018 | HIPAA Advice
Software or an email application platform can never be completely HIPAA compliant, as compliance is dependent on how the software is being used rather than the software itself. However, software and email services can make it easier to comply with HIPAA. For this to...
by Patrick Kennedy | Jul 17, 2018 | HIPAA News
Cass Regional Medical Center in Harrisonville, MO suffered a ransomware attack at Around 11am on Monday July 9 that impacted its communication system and stopped staff from logging onto its electronic medical record (EHR) system. The clinic had measures in place for...
by Patrick Kennedy | Jul 16, 2018 | HIPAA News
A former staff member of Arkansas Children’s Hospital is being investigated by law authorities in relation to the theft and misuse of patients’ protected health information. The breach notice submitted to the Department of Health and Human Services’ Office for Civil...
by Patrick Kennedy | Jul 12, 2018 | GDPR Advice
by Patrick Kennedy | Jul 12, 2018 | HIPAA News
In 2016, Radnor, PA-based Main Line Health Inc., fired a member of staff for breaching Health Insurance Portability and Accountability Act (HIPAA) Rules by viewing the personal records of a co-worker without authorization on two different occasions. In such instances,...
by Patrick Kennedy | Jul 11, 2018 | HIPAA News
Manitowoc County in Wisconsin has revealed that protected health information has been illegally obtained due to a successful phishing attack. The incident happened close to January 14, 2018, although the attack and data breach was not identified until April 24. While...
by Patrick Kennedy | Jul 9, 2018 | HIPAA News
Humana is contacting members across the US to notify them that their PHI may have been been accessed during a ‘sophisticated’ spoofing campaign. A spoofing attack refers to a concerted effort by a threat actor or bot to gain access to a system or data using illegally...
by Patrick Kennedy | Jul 6, 2018 | CCPA News, Cybersecurity
On June 28, 2018, California passed AB 375, the California Consumer Privacy Act of 2018 (CCPA), which will become effective January 1, 2020. It is thought that this will be the first of many State laws in the United States inspired by European Union’s General...
by Patrick Kennedy | Jul 5, 2018 | HIPAA Advice
The Alaska Department of Health and Social Services (ADHSS) is contacting ‘more than 500’ individuals to inform them that some of their protected health information (PHI) may have been accessed by hackers. On April 26, the ADHSS found that malware had been placed on...
by Patrick Kennedy | Jul 4, 2018 | HIPAA News
In the past few days, Associated Dermatology & Skin Cancer Clinic of Helena, MT, has reported a breach of physical protected health information (PHI) that may have impacted up to 1,254 patients. A journal managed by an employee of Associate Dermatology was taken...
by Patrick Kennedy | Jul 2, 2018 | HIPAA News
Med Associates the health billing company, located in Latham, NY-based, which provides claims services to over 70 healthcare providers, has found that an employee’s computer has been logged onto by an unauthorized individual. It is possible that the hacker obtained to...
by Patrick Kennedy | Jun 28, 2018 | Cybersecurity, HIPAA News
ICS-CERT has released a warning after identifying eight vulnerabilities in version 8 of Natus Xltek NeuroWorks software implemented in Natus Xltek EEG medical products. If the weaknesses are successfully exploited they could allow a hacker to crash a vulnerable device...
by Patrick Kennedy | Jun 26, 2018 | HIPAA News
After what is believed to have been inappropriate accessing of patient health records by staff members, Washington Health System has decided to suspend several staff members while the privacy breach is reviewed. While it has not been revealed how many staff members...
by Patrick Kennedy | Jun 22, 2018 | GDPR Advice
by Patrick Kennedy | Jun 21, 2018 | HIPAA News
New guidance for HIPAA-covered bodies to streamline HIPAA authorizations for uses of protected health information for research purposes has been released by the Department of Health and Human Services’ Office for Civil Rights , as required by the 21st Century Cures...
by Patrick Kennedy | Jun 20, 2018 | Cybersecurity, HIPAA News
The results of a HIMSS survey has revealed that medical device security is a strategic focus for most healthcare groups, yet fewer than 50% of healthcare providers have an approved budget for addressing security weaknesses in medical devices. For the survey, HIMSS...
by Patrick Kennedy | Jun 20, 2018 | HIPAA News
A phishing attack has been experienced by the Florida Agency for Persons with Disabilities (FAPD), which provides support services for people with disabilities such as autism, cerebral palsy, spina bifida, and Downs syndrome. The phishing attack took place on April...
by Patrick Kennedy | Jun 19, 2018 | HIPAA News
A former member of staff at the Veteran Affairs Medical Center located in Long Beach, CA who illegally stole the protected health information (PHI) of over 1,000 patients has been given a three-year jail sentence. Albert Torres, 51, was working as a clerk in the Long...
by Patrick Kennedy | Jun 18, 2018 | HIPAA News
Two HIPAA-covered organizations are making their patients aware that some of their protected health information (PHI) has been stolen by unauthorized individuals in recent times. PHI Stolen from Staff Member of Christus Spohn Hospitals The protected health information...
by Patrick Kennedy | Jun 17, 2018 | GDPR Advice
by Daniel Lopez | Jun 15, 2018 | HIPAA Advice
The small distinction between HIPAA medical records retention and HIPAA record retention can lead to some confusion when discussing HIPAA retention requirements. This article seeks to explain what records need to be retained under HIPAA, and what other retention...
by Patrick Kennedy | Jun 15, 2018 | HIPAA News
HealthEquity Inc. has been hit by a phishing attack leading to the exposure of members’ protected health information. The data breach was restricted to one email account, although a review of the messages in the account showed a range of PHI was potentially stolen by...
by Patrick Kennedy | Jun 14, 2018 | HIPAA News
A staff member at Phoenix-based Terros Health was tricked by a phishing scam and mistakenly handed over login credentials to the hacker. That person accessed the employee’s email account and may have viewed or obtained a range of protected health information listed in...
by Patrick Kennedy | Jun 13, 2018 | HIPAA News
The results of a recent survey conducted by Black Book Research show that 90% of hospitals and 94% of physicians have implemented mobile technology and believe that it is helping to enhance patient safety and outcomes, . The survey was carried out on 770...
by Patrick Kennedy | Jun 12, 2018 | HIPAA News
3,700 plan members of Rise Wisconsin are being warned that some of their protected health information may have been obtained by unauthorized people during a recent ransomware attack. It is estimated that the ransomware was placed on on its IT systems around April 8,...
by Patrick Kennedy | Jun 11, 2018 | HIPAA News
A nurse who shared patient data with her new employer has been suspended for 12 months by the New York State Education Department, while her former employer has been fined $15,000 for the breach of Protected Health Information. In April 2015, Martha C. Smith-Lightfoot...
by Patrick Kennedy | Jun 11, 2018 | Cybersecurity
Towards the end of last week social media giant Facebook revealed it experienced a data privacy breach last week that placed 14 million users of the platform in danger. From May 18 and 27, a technical glitch meant that the privacy settings for new posts was...
by Patrick Kennedy | Jun 8, 2018 | HIPAA News
Aetna have launched fresh attempts to recover some of the expenses they incurred in the ongoing legal battles in relation to a 2017 privacy breach involving the exposure of patients’ sensitive health information. A new lawsuit has been submitted by the insurance...
by Daniel Lopez | Jun 8, 2018 | HIPAA Advice
HIPAA (The Health Insurance Portability and Accountability Act) is an vital legislative Act that impacts the U.S. healthcare secor, but what is the purpose of HIPAA? Healthcare workers often complain about the limitations imposed by HIPAA – Are the advantages of the...
by Patrick Kennedy | Jun 7, 2018 | Cybersecurity, HIPAA News
An official advisory over weaknesses impacting certain Phillips IntelliVue Patient and Avalon Fetal monitors has been released by the Department of Homeland Security’s Industrial Control Systems Cyber Emergency Response Team (ICS-CERT). Three weaknesses have been...
by Patrick Kennedy | Jun 6, 2018 | HIPAA News
A new application programming interface (API) for developers that will allow them to develop health apps that include patients’ EHR data has been launched by Apple. Users who share their EHR data into the Apple Health Records app will be able to distribute the data...
by Patrick Kennedy | Jun 5, 2018 | HIPAA News
A former member of staff from Mosaic Life Care Medical Center in St. Joseph, MO has filed legal action over wrongful dismissal and retaliation for her taking measures to avoid a breach of the False Claims Act. Debra Conrad, aged 57, claims she was wrongfully sacked...
by Patrick Kennedy | Jun 5, 2018 | HIPAA News
In Colorado bill HB 1128 has been signed into law by Governor John Hickenlooper. This bill enhances security for consumer data in the state of Colorado. The bipartisan bill, sponsored by Reps. Cole Wist (R) and Jeff Bridges (D) and Sens. Kent Lambert (R) and Lois...
by Daniel Lopez | Jun 1, 2018 | HIPAA Advice
The Healthcare Insurance Portability and Accountability Act states that that an individual(s) within a Covered Entity or Business Associate must be assigned the duties of HIPAA Compliance Officer. The individual filling this role can be an existing employee or a new...
by Patrick Kennedy | Jun 1, 2018 | HIPAA News
A number of different data breaches and violations of HIPAA Rules have been discovered by Dignity Health in the past few weeks. One incident involved a staff member accessing the PHI of patients without official permission, a mistake occurred that allowed a business...
by Patrick Kennedy | May 31, 2018 | HIPAA News
Purdue University have been discovered two security breaches that may have lead to unauthorized people obtaining access to the protected health information of patients. During April Purdue University’s security team identified a file on computers used by Purdue...
by Patrick Kennedy | May 30, 2018 | HIPAA News
Boston-based Steward Healthcare System fired a psychiatrist for breaching HIPAA Rules but must now show evidence to jury that he did so. The psychiatrist, Dr. Alexander Lipin, argues he was relieved of his position due to his taking extended disability leave, not for...
by Patrick Kennedy | May 29, 2018 | HIPAA News
There was a provision included in the Health Information Technology for Economic and Clinical Health (HITECH) Act, passed in 2009, for the Department of Health and Human Services to share a portion of HIPAA settlements with those affected by HIPAA breaches. There has...
by Patrick Kennedy | May 28, 2018 | HIPAA News
Aultman Health Foundation, which operates Aultman Hospital in Canton, OH, is alerting around 42,600 patients that some of their protected health information may have been accessed due to a phishing attack. Unauthorized and unknown people succeeded in obtaining access...
by Patrick Kennedy | May 26, 2018 | Cybersecurity, HIPAA News
By implementing the Domain-based Message Authentication, Reporting and Conformance (DMARC) Standard, healthcare organizations can identify and restrict email spoofing and abuse of their domains; however, relatively few healthcare groups are using DMARC for spam...
by Patrick Kennedy | May 25, 2018 | HIPAA News
If your organization is governed by some (Business Associates) or all (Covered Entities) of the Privacy Rule, it is necessary to obtain a valid release form for HIPAA compliance before Protected Health Information (PHI) is used or disclosed for a purpose not required...
by Patrick Kennedy | May 24, 2018 | HIPAA News
Associates in Psychiatry and Psychology (APP) a Rochester, Minnesota-based health organization has suffered a ransomware attack that targeted several computers that stored patients’ protected health data. The ransomware attack was identified on March 31, 2018. Patient...
Page 1 of 312...»Last Page »
