RyanCoyne
Ryan Coyne is a results-driven leader in the healthcare compliance industry, specializing in regulatory compliance, compliance training, and assisting healthcare organizations and business associates in achieving and maintaining compliance. With a deep knowledge of healthcare regulations and a keen understanding of the challenges faced by the industry, Ryan has developed a reputation as a trusted advisor and advocate for ethical and compliant practices in healthcare. Ryan has successfully advised and guided numerous healthcare organizations, business associates, and healthcare professionals on achieving and maintaining compliance with regulatory training requirements. Ryan's professional focus is using his in-depth expertise and leading a world class team of subject matter experts at ComplianceJunction in regulatory compliance to help organisations navigate the complex landscape of ensuring staff adhere to healthcare regulations. You can connect with Ryan via LinkedIn https://www.linkedin.com/in/ryancoyne/ and follow on Twitter https://twitter.com/ryancoyne
by Ryan Coyne | Aug 23, 2024 | HIPAA News
The Federal Bureau of Investigation (FBI), the Australian Signals Directorate’s Australian Cyber Security Centre (ACSC), the U.S. Cybersecurity and Infrastructure Security Agency (CISA), and the National Security Agency (NSA), together with their global partners, have...
by Ryan Coyne | Aug 15, 2024 | HIPAA News
Health system McLaren Health Care based in Grand Blanc, MI manages 13 hospitals in Michigan and several doctor offices, ambulatory surgery centers, and other patient care facilities in the state. It reported an investigation of an outage impacting its telephone and...
by Ryan Coyne | Aug 4, 2024 | HIPAA News
In early July, a data breach report was submitted by HealthEquity, a financial technology and business services company based in Draper, UT. HealthEquity mentioned in its 8-K filing with the Securities and Exchange Commission (SEC) that suspicious activity was...
by Ryan Coyne | Aug 1, 2024 | HIPAA News
United of Omaha Life Insurance Company based in Nebraska has reported a phishing email that led to a protected health information (PHI) breach involving 107,894 individuals. The insurer discovered the breach on April 23, 2024 upon identification of anomalous activity...
by Ryan Coyne | Jul 28, 2024 | HIPAA News
MediSecure, an Australian company providing electronic prescription services, encountered a ransomware attack that enabled the theft of 6.5TB of data, which included the sensitive information of approximately 12.9 million Australians – about 50% of the...
by Ryan Coyne | Jul 22, 2024 | HIPAA News
23andMe based in San Francisco has proposed an agreement to resolve a class action lawsuit that was submitted because of a breach of consumer information in 2023. The breach happened in October 2023 and the attacker stole the data of around 6.9 million people, about...
by Ryan Coyne | Jul 19, 2024 | HIPAA News
A class action lawsuit was filed against Pruitt Health over a ransomware attack in 2023 that resulted in the compromise of the protected health information (PHI) of 56,405 individuals. Pruitt Health manages 180 care centers in Georgia, Florida, North and South...
by Ryan Coyne | Jul 13, 2024 | HIPAA News
A substitute breach notice has been published on the Change Healthcare website regarding its February 2024 cyberattack and mentioned the start of sending notification letters to the impacted persons on July 20, 2024. Change Healthcare stated that the data analysis is...
by Ryan Coyne | Jul 12, 2024 | HIPAA News
Palomar Health Medical Group has informed its patients that an April 2024 cyberattack may have affected their data. The company is a primary and specialty care provider to North San Diego County locals. Patients’ protected health information (PHI) may have been...
by Ryan Coyne | Jul 7, 2024 | HIPAA News
Mass General Brigham based in Boston, MA, reported the termination of two employees because of a privacy breach discovered on April 4, 2024. According to the investigation of the health system, the two employees permitted a third person, who wasn’t working at...
by Ryan Coyne | Jun 30, 2024 | HIPAA News
The healthcare and public health (HPH) sector has been cautioned about the Qilin ransomware group that has been attacking healthcare providers because of their dependence on uptime and the sensitive data they maintain. About 7% of ransomware attacks were conducted on...
by Ryan Coyne | Jun 21, 2024 | HIPAA News
California Attorney General Rob Bonta has reported reaching a settlement with Adventist Health Hanford concerning alleged violations of California’s Confidentiality of Medical Information Act (CMIA), the Health Insurance Portability and Accountability Act (HIPAA), the...
by Ryan Coyne | Jun 16, 2024 | HIPAA News
Native American Health Center (NAHC) is a nonprofit government-qualified health center that provides services to the local community (American Indians and Alaska Natives) in the California Bay Area. The health center encountered a cybersecurity attack on November 19,...
by Ryan Coyne | Jun 9, 2024 | HIPAA News
The cyberattack on Ascension has led to the shutdown of some hospitals’ critical systems for over three weeks. Although Ascension has downtime procedures in place, doctors are under pressure because of the burden of using pen and paper for recording, and many...
by Ryan Coyne | Jun 2, 2024 | HIPAA News
Cencora, Inc. (earlier known as AmerisourceBergen), and its Lash Group affiliate, were impacted by a cyberattack. Cencora reported the incident in a Securities and Exchange Commission (SEC) filing in February 2024. During that time, the scope of the data breach is not...
by Ryan Coyne | May 26, 2024 | HIPAA News
The American Privacy Rights Act (APRA), the replacement of the American Data Privacy and Protection Act (ADPPA), has been questioned by 15 State Attorneys General who are asking Congress not to move forward with the recommended government data privacy legislation in...
by Ryan Coyne | May 18, 2024 | HIPAA News
All healthcare and public health (HPH) sector {organizations|providers} received {an alert|a warning} to {apply|employ} mitigations against Black Basta ransomware attacks, {because|since} the ransomware-as-a-service (RaaS) group is attacking the HPH sector. In 2023,...
by Ryan Coyne | May 12, 2024 | HIPAA News
The Occupational Safety and Health Administration (OSHA) has recommended penalizing a home healthcare company with $163,627 for allegedly failing to safeguard workers against serious dangers of work violence. OSHA cited New England Home Care Inc., and Jordan Health...
by Ryan Coyne | May 6, 2024 | HIPAA News
UnitedHealth Group (UHG) CEO Andrew Witty recently gave a testimony at a House subcommittee hearing. The Senators confronted Witty concerning the Change Healthcare ransomware attack and because one-of-three Americans might be impacted. Witty apologized for the...
by Ryan Coyne | Apr 28, 2024 | HIPAA News
Kaiser Permanente Health Plan Inc. is informing 13.4 million people about disclosing some of their personal information to third parties including X (Twitter), Microsoft (Bing), and Google due to the use of tracking codes on its web pages and applications. This is the...
by Ryan Coyne | Apr 18, 2024 | HIPAA News
American Healthcare Systems and Rutgers Robert Wood Johnson Medical School have spotted email incidents due to the unauthorized access/disclosure of patient information, while Cherry Health Services suffered a ransomware attack. Email Security Incident at Randolph...
by Ryan Coyne | Apr 12, 2024 | HIPAA News
Medicare Data Compromised in Boston Consulting Agency Data Breach A data breach at Boston consulting agency, Greylock McKinnon Associates, Inc., (GMA) affected 341,650 persons. Based on the GMA breach notification, the agency discovered a security incident on May 30,...
by Ryan Coyne | Apr 11, 2024 | HIPAA Advice
The HITECH Act (Health Information Technology for Economic and Clinical Health Act) was passed by Congress in 2009 as a part of the American Recovery and Reinvestment Act – an economic stimulus package intended to help the country recover from the Great Depression of...
by Ryan Coyne | Apr 6, 2024 | HIPAA News
The HHS Office for Civil Rights issued one more financial penalty for a HIPAA Right of Access violation. Essex Residential Care, LLC, also known as Hackensack Meridian Health, West Caldwell Care Center in New Jersey, was directed to pay a $100,000 civil monetary...
by Ryan Coyne | Mar 29, 2024 | HIPAA News
Avem Health Partners Pays $1.45 Million to Settle Class Action Data Breach Lawsuit Avem Health Partners agreed to pay a $1.45 million settlement to settle claims associated with a 2022 data breach affecting the protected health information (PHI) of 271,303 persons....
by Ryan Coyne | Mar 23, 2024 | HIPAA News
Each regular U.S. hospital has 10 to 15 medical devices, so this means a 1,000-bed hospital can have about 15,000 medical devices, which considerably increases the attack surface. Medical devices may include clinical IoT devices, imaging devices, and surgery devices....
by Ryan Coyne | Mar 15, 2024 | HIPAA News
Financial Assistance Program Offered by UnitedHealth Group On March 8, 2024, about 2 weeks after the ransomware attack on Change Healthcare, UnitedHealth Group presented a schedule on when it is trying to have its systems and services available. UnitedHealth Group...
by Ryan Coyne | Mar 10, 2024 | HIPAA News
87,000 Patients Impacted by Cogdell Memorial Hospital Cyberattack On October 10, 2023, Cogdell Memorial Hospital based in Snyder, TX, found abnormal activity in its computer network. After securing its network, a third-party cybersecurity agency looked into the...
by Ryan Coyne | Mar 9, 2024 | HIPAA Advice
Inaction in HIPAA compliance can have several costs and consequences for healthcare organizations. Here are some of the key consequences: Data Breaches and Financial Costs A breach of patient data can lead to high financial costs. Expenses related to notifying...
by Ryan Coyne | Mar 4, 2024 | HIPAA Advice
Due to the complexity of the HIPAA Privacy Rule, it can sometimes be difficult to find an accurate answer to the question what is defined as PHI under HIPAA. This article explains not only what Protected Health Information (PHI) is, but why it is importantly to fully...
by Ryan Coyne | Mar 2, 2024 | HIPAA News
Ransomware Attack on Green Ridge Behavioral Health Results in HIPAA Penalty The Department of Health and Human Services (HHS) Office for Civil Rights (OCR) settled an alleged Health Insurance Portability and Accountability Act (HIPAA) violations with a behavioral...
by Ryan Coyne | Feb 25, 2024 | HIPAA News
OCR Wants Opinions to Develop HIPAA Audit Program The Department of Health and Human Services (HHS) Office for Civil Rights (OCR) is having a HIPAA Audit Review Survey and is looking for comments from entities that need to undertake HIPAA compliance audits to get data...
by Ryan Coyne | Feb 22, 2024 | HIPAA Advice
Good PHI examples include most aspects of a patient’s healthcare, including their comprehensive medical history, which encompasses past and current medical conditions, surgeries, allergies, and ongoing treatments, along with laboratory test results like blood...
by Ryan Coyne | Feb 19, 2024 | HIPAA Advice
Who enforces HIPAA depends on the section of HIPAA being enforced, the activities of the organization against which enforcement action is being taken, or whether an individual against whom enforcement action is being taken is a member of a covered entity’s or business...
by Ryan Coyne | Jan 28, 2024 | HIPAA Advice
Yes, HIPAA training is typically required annually for all staff members who have access to protected health information (PHI), and it is considered a best practice to conduct annual training sessions to ensure that employees stay up-to-date with the latest...
by Ryan Coyne | Dec 13, 2023 | HIPAA Advice
A key to success for HIPAA compliance is having a full HIPAA compliance program that includes comprehensive training. HIPAA training is an key element of HIPAA compliance because it ensures that all employees and relevant personnel understand the regulations, their...
by Ryan Coyne | Nov 24, 2023 | HIPAA Advice
Employee HIPAA training records should be retained for a minimum of six years from the date of their creation or the date when they were last in effect, as per the U.S. Department of Health and Human Services (HHS) guidance, to ensure documentation of compliance...
by Ryan Coyne | Nov 21, 2023 | HIPAA News
St. Joseph’s Medical Center in Yonkers, NY, has agreed to settle alleged Privacy Rule violations for $80,000 and must comply with a corrective action plan to address the cause of the alleged violations – namely that members of the workforce impermissibly allowed a...
by Ryan Coyne | Oct 27, 2023 | Cybersecurity, HIPAA News
The lack of HIPAA cybersecurity training at a NY-based home health company has contributed to the company being fined $350,000 by the NY State Attorney General as part of a wide-ranging settlement agreement that includes a thorough overhaul of the company’s security...
by Ryan Coyne | Oct 23, 2023 | HIPAA Advice
HIPAA stands for the Health Insurance Portability and Accountability Act, a comprehensive federal law enacted in the United States in 1996, which is designed to safeguard the privacy and security of individuals’ protected health information (PHI) while also...
by Ryan Coyne | Aug 25, 2023 | HIPAA Advice
The maximum penalty for a HIPAA violation can range from $100 to $50,000 per violation, with a maximum annual penalty of $1.5 million for repeated violations of the same provision, and in cases involving willful neglect, the penalties can reach up to $1.5 million per...
by Ryan Coyne | Aug 1, 2023 | HIPAA Advice
The purpose of HIPAA certification for healthcare professionals is to demonstrate a level of competency and understanding of the Health Insurance Portability and Accountability Act (HIPAA). HIPAA certification can be beneficial because it establishes a standardized...
by Ryan Coyne | Jul 24, 2023 | HIPAA Advice
Employees who violate HIPAA may face severe consequences, including disciplinary actions, termination of employment, legal penalties, fines, and even imprisonment, as their actions can compromise the privacy and security of patient information and breach the trust...
by Ryan Coyne | Sep 14, 2022 | Cyberlaw by Eoin Campbell
Let us imagine the following scenario: In an effort to improve data security and conform with GDPR requirements, a small to medium sized business decides to implement a new policy of password protection; new passwords are to be issued to each employee on a weekly...
by Ryan Coyne | Sep 6, 2022 | HIPAA Advice
The healthcare sector in the United States faces escalating data security challenges due to the increased activity of cybercriminals – particularly since the beginning of the COVID-19 pandemic. Consequently, it may be necessary to commit more resources to...
by Ryan Coyne | Jun 22, 2022 | Cyberlaw by Eoin Campbell, GDPR Advice
Given that more than a year has passed since the European Union’s General Data Protection Regulation (GDPR) was implemented, on the 25th May 2018 to be precise, most businesses are aware that they have a legal obligation to protect any ‘personal data’ which they...
by Ryan Coyne | Jun 8, 2022 | Cyberlaw by Eoin Campbell, GDPR Advice
Commonly recognised as the toughest privacy and security law on the planet, the European Union’s General Data Protection Regulation (or GDPR), imposes legal obligations on companies and organizations anywhere, so long as they handle data related to people situated in,...
by Ryan Coyne | Apr 3, 2022 | Cyberlaw by Eoin Campbell, GDPR Advice
On May 25th, 2018, the European Union’s General Data Protection Regulation (GDPR) replaced the Data Protection Directive of 1995. Unlike the previous legislation, the GDPR affects businesses and organisations which are based outside of the EU. The simple fact that all...
by Ryan Coyne | Feb 26, 2022 | Cyberlaw by Eoin Campbell
The GDPR was approved by the Parliament of the European Union on the 14th April 2016 and has been in force since the 25th May 2018. Organisations that are not compliant can now face heavy fines. Suffice to say, significant changes to the way businesses and companies...
by Ryan Coyne | Dec 11, 2021 | Cyberlaw by Eoin Campbell, GDPR Advice
The General Data Protection Regulation applies to any data controller and processor who deals with the data of EU citizens or residents, whether the data handler is based within the European Union or not. In addition to ensuring that they meet general compliance...
by Ryan Coyne | Nov 2, 2021 | Cyberlaw by Eoin Campbell, GDPR Advice
The General Data Protection Regulation came into effect throughout the member states of the European Union on the 25th May 2018. As you are no doubt already well aware, the GDPR is, in simple terms, a new framework of conditions aimed at giving citizens of the...
by Ryan Coyne | Sep 22, 2021 | Cyberlaw by Eoin Campbell, HIPAA Advice
The Federal Trade Commission (FTC) has a Health Breach Notification Rule, similar to the Breach Notification Rule of the Health Insurance Portability and Accountability Act (HIPAA). The FTC has recently released a Policy Statement confirming digital health app and...
by Ryan Coyne | Sep 8, 2021 | HIPAA Advice
HIPAA training for student nurses holds substantial importance in preparing these future healthcare professionals to effectively navigate the complex landscape of patient information privacy and security, offering them a comprehensive understanding of the legal and...
by Ryan Coyne | Jul 30, 2021 | HIPAA Advice
Who can sue for a HIPAA violation? Unlike the California Consumer Privacy Act (CCPA), there is no private cause of action in HIPAA, so that means a patient cannot sue for a HIPAA breach even if their protected health information has been impermissibly disclosed or...
by Ryan Coyne | Jul 28, 2021 | HIPAA Advice
During the past twelve months, the number of recorded ransomware attacks against healthcare organizations – particularly small and medium sized practices – has increased significantly. Security experts believe the increase in recorded ransomware attacks is...
by Ryan Coyne | Jul 20, 2021 | HIPAA News
In Illinois Lake County Health Department has revealed that it has been impacted by two separate data breaches that could have impacted the protected health information (PHI) of approximately 25,000 patients. The initial breach took place, when a Lake County Health...
by Ryan Coyne | Jul 15, 2021 | HIPAA Advice
The vast majority of entities covered by the Health Insurance Portability and Accountability Act (HIPAA) provide regular training to employees on their responsibilities under HIPAA, and employees are diligent and take care not to violate the HIPAA Rules or put patient...
by Ryan Coyne | Jul 13, 2021 | HIPAA Advice
Many suppliers would like HIPAA certification to confirm they are fully compliant with HIPAA Rules and are knowledgeable with all parts of the Health Insurance Portability and Accountability Act (HIPAA), but can HIPAA certification be achieved in order to confirm...
by Ryan Coyne | Jun 1, 2021 | HIPAA Advice
Due to the volume of federal, state, and international privacy regulations, it is understandable some businesses may be uncertain about whether you can ask for proof of COVID-19 vaccination status. The short answer to the question is yes. There are no federal, state,...
by Ryan Coyne | May 21, 2021 | HIPAA News
The HIPAA breaches reported during April 2021 show a huge increase in the number of data breaches recorded from January to April 2021 compared with the same period in 2020. The amount of HIPAA breach cases recorded during this period has risen by 56% to 201, up from...
by Ryan Coyne | Apr 27, 2021 | Cybersecurity
Four new zero-day vulnerabilities in Microsoft Exchange Server versions 2013, 2016, and 2019 have been discovered by the U.S. National Security Agency (NSA). These versions of Microsoft Exchange Server must be patched as soon as possible to avoid the possibility of...
by Ryan Coyne | Apr 12, 2021 | HIPAA News
On January 28, 2021 malware was discovered on databases holding private patient at the data La Clinica de la Raza in Oakland, CA. The clinic is now getting in touch with a range of patients to inform them that their protected health information may have been breached....
by Ryan Coyne | Mar 22, 2021 | HIPAA Advice
Although the text of HIPAA contains only one reference to passwords, there are several other areas of the Act in which it is inferred HIPAA password requirements exist. For example, under the Technical Safeguards of the Security Rule (45 CFR § 164.312), covered...
by Ryan Coyne | Mar 11, 2021 | GDPR Advice
The new General Data Protection Regulation (GDPR) which comes into force in May 2018 does not outlaw the use of a simple username and static password system for accessing personal data, but GDPR does state that data access procedures need to be secure. More...
by Ryan Coyne | Mar 11, 2021 | HIPAA Advice
The value of providing healthcare students with Health Insurance Portability and Accountability Act (HIPAA) training cannot be underestimated as it can prevent serious data breaches from occurring while also increasing the employability of the individuals who...
by Ryan Coyne | Mar 3, 2021 | HIPAA Advice
Most HR managers will be aware that if the organization operates a self-funded health insurance plan which is also self-administered, employees with access to protected health information (PHI) are required to undergo HIPAA training. HIPAA training should be provided...
by Ryan Coyne | Feb 11, 2021 | HIPAA Advice
It is crucial that all members of staff at a HIPAA governed entity are completely aware of their obligations under the data privacy legislation – if not it could lead to financial penalties for the organization and other ramifications for the individual...
by Ryan Coyne | Feb 3, 2021 | HIPAA Advice
Every HIPAA-covered entity must conduct HIPAA training on an ongoing basis to ensure that all employees know what they must do to avoid a HIPAA breach occurring. Equally important as conducting the training is choosing the best time to do so. There is an obligation on...
by Ryan Coyne | Feb 3, 2021 | HIPAA News
Roper St. Francis Healthcare has made contact with 189,761 patients to make them aware that a portion of their protected health information was included in the staff employee email account to which access was illegally obtained. In late October 2020 the email security...
by Ryan Coyne | Jan 21, 2021 | Cybersecurity
With the passing, in November 2020, of the California Privacy Rights Act, came a range of new obligations for businesses operating in the State. They must now move swift to make sure that every member of staff is conscious of their obligations in order to avoid large...
by Ryan Coyne | Jan 18, 2021 | GDPR Advice
The General Data Protection Regulation (GDPR) became enforceable on May 25 2018 and brought with it a number of rules that could, if broken, may result in the sanctioning of heavy fines. One sector where GDPR has had a huge impact is insurance industry, particularly...
by Ryan Coyne | Jan 11, 2021 | HIPAA Advice
Telehealth is an area that is very important to pay particular attention to when addressing the Health Insurance Portability and Accountability Act (HIPAA) compliance so it is important to be aware of the many different types of telehealth that have been created to...
by Ryan Coyne | Jan 6, 2021 | HIPAA News
An update on the Departments of Health and Human Services’ (HHS) Office for Civil Rights (OCR) breach portal has revealed that a previously-employed contract staff member may have illegally accessed the medical records of a range of patients working at Chicago...
by Ryan Coyne | Jan 5, 2021 | Cybersecurity
In the third quarter of 2020, an alert was released for the healthcare and public health sector in the aftermath of a spike in ransomware activity being identified. The joint CISA, FBI, and HHS cybersecurity advisory group informed the healthcare sector that it was...
by Ryan Coyne | Dec 21, 2020 | HIPAA Advice
Healthcare groups and their business associates that want to transmit share protected health information must do so in line with the HIPAA Privacy Rule, which restricts the potential uses and disclosures of PHI, but de-identification of protected health information...
by Ryan Coyne | Dec 12, 2020 | Cybersecurity
In France the data protection regulator, Commission nationale de l’informatique et des libertés (CNIL), has penalised French retail giant Carrefour more than €3m ($3.7m) in relation to a number of breaches of the European Union’s General Data Protection Regulation....
by Ryan Coyne | Dec 11, 2020 | Cybersecurity
The U.S. National Security Agency (NSA) has issued a cybersecurity advisory warning Russian state-sponsored hacking groups are targeting a vulnerability in VMWare virtual workspaces used to support remote working. The flaw, tracked as CVE-2020-4006, is present in...
by Ryan Coyne | Dec 7, 2020 | HIPAA News
University of Minnesota Physicians has been hit by a cybercriminal attack that result in access being gained to the email accounts of two members of staff. One corporate email account was rendered accessible from the time period between January 30 and January 31, 2020...
by Ryan Coyne | Nov 26, 2020 | Cyberlaw by Eoin Campbell
Some have called it the “new normal”. Others speak of the “Post-Covid world.” More positive and hopeful voices tell us that the Covid-19 pandemic, while painful, is but a temporary hiccup in the history of humanity. Whatever the truth of the matter it is clear that...
by Ryan Coyne | Nov 20, 2020 | Cybersecurity
In Canada Minister of Innovation, Science and Industry Navdeep Bains has introduced the proposed Digital Charter Implementation Act, 2020 which aims to bring the framework up to date for the security of private data in the corporate sector. The proposed Digital...
by Ryan Coyne | Nov 19, 2020 | HIPAA Advice
Listed here is a summary of some of the most significant HIPAA breach cases that have lead to settlement agreements with the Department of Health and Human Services’ Office for Civil Rights (OCR). We have also listed some cases that have been pursued by OCR after a...
by Ryan Coyne | Nov 6, 2020 | CCPA News, Cybersecurity
In California the California Privacy Rights Act (CPRA) ballot initiative has been passed after winning the approval of 56% of votes. This means that Californiance Consumers Privacy Act will be amended to incorporate additional rights for the consumer. Along with this...
by Ryan Coyne | Nov 4, 2020 | HIPAA News
Following claims of breaches of federal and state legislation, linked to a data breach involving the protected health information of 9,700 customers of two ShopRite supermarkets in Millville, New Jersey and Kingston NY, Wakefern Food Corporation has agreed to pay...
by Ryan Coyne | Oct 29, 2020 | HIPAA Advice
HIPAA compliance is already provided by Amazon for its cloud platform AWS and the group is aiming to increase the use of the Alexa voice recognition technology within the healthcare sector. There is great potential for Alexa to make a lot of workflows much more...
by Ryan Coyne | Oct 28, 2020 | Cybersecurity
Microsoft have made a new patch available to address a critical remove code execution flaw in the Microsoft Windows Transmission Control Protocol (TCP)/IP stack. The flaw is related to how the TCP/IP stack manages Internet Control Message Protocol version 6 (ICMPv6)...
by Ryan Coyne | Oct 14, 2020 | CCPA News, Cybersecurity
A third set of proposed modifications to the California Consumer Privacy Act (CCPA) has been released by the California Department of Justice. The California attorney general became authorized to enforce the law on July 1, 2020, and the California Office of...
by Ryan Coyne | Oct 2, 2020 | HIPAA News
Anthem Inc. has come to an agreement to settle actions by state attorneys general in different US states in relation to the 2014 78.8 million record data breach. Along with the $48.2 million financial penalty, Anthem has committed to implementing a number of...
by Ryan Coyne | Sep 28, 2020 | Cybersecurity
An alert has been released by the Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA) after a noticeable increase in LokiBot malware activity was recorded in the past eight weeks. LokiBot – also referred to as Lokibot, Loki PWS,...
by Ryan Coyne | Sep 14, 2020 | Cybersecurity
The second annual National Insider Threat Awareness Month (NITAM) has been kicked off frequently, and assistance is being provided being made available to emphasize the importance of tackling insider threats. This event is a group project produced by NITAM and a...
by Ryan Coyne | Sep 4, 2020 | HIPAA News
Another four healthcare suppliers have broadcast HIPAA breach alerts in relation to the Blackbaud ransomware attack and data breach. Just after the Northwestern Memorial HealthCare group revealed that the personal information of 55,983 clients had been impacted, an...
by Ryan Coyne | Aug 13, 2020 | CCPA News, Cybersecurity
In California an accusation that the illegal harvesting the biometric data of over 100 million Instagram users has taken place has resulted in legal proceedings being initiated against Facebook, owner of the image sharing social media platform. The legal action was...
by Ryan Coyne | Aug 10, 2020 | Cyberlaw by Eoin Campbell
Two court rulings made in July 2020 may prove to be among the most important legal precedents that American tech companies will ever have had to come to grips with. What is particularly interesting about these two decisions is that they were not made by the Supreme...
by Ryan Coyne | Aug 7, 2020 | CCPA News, Cybersecurity
A California federal court legal action alleges that Google has been tracking smartphone users’ app activity without adequate authorization in breach of the California Consumer Privacy Act. The legal action that was filed in the Northern District of California last...
by Ryan Coyne | Aug 1, 2020 | HIPAA News
The Federal Bureau of Investigation (FBI) has released a (TLP:WHITE) FLASH alert following a rise in attacks using Netwalker ransomware. Netwalker is a new threat on the ransomware scene, first spotted in March 2020 after attacks on a transportation and logistics...
by Ryan Coyne | Jul 17, 2020 | Cybersecurity
A massive phishing campaign which was being operated in 62 countries has been taken down by Microsoft. First spotted by Microsoft’s Digital Crimes Unit (DCU) in December 2019, this particular phishing campaign was trying to steal the Office 365 credentials of...
by Ryan Coyne | Jul 16, 2020 | Cybersecurity
The European Court of Justice has today issued a ruling that voids the existing Privacy Shield agreement for data sharing between the European Union and United States due to the fact that it does not adequately safeguard the private data of European citizens. The...
by Ryan Coyne | Jul 16, 2020 | HIPAA Advice
Currently, there is no private cause of action in HIPAA, so a patient cannot take a legal action for a HIPAA violation. Even if HIPAA Rules have clearly been breached by a healthcare provider, and harm has been sustained due to this, it is not possible for patients to...
by Ryan Coyne | Jul 10, 2020 | Cyberlaw by Eoin Campbell
In a statement released on the 29th of June 2020, TikTok, the Chinese video-sharing social networking service owned by ByteDance, announced its decision to move the responsibility for safeguarding the privacy of its European users to its Irish and UK entities. ...
by Ryan Coyne | Jul 6, 2020 | HIPAA News
Following mediation talks, there has been an agreement to a proposed settlement between Grays Harbor Community Hospital and Harbor Medical Group and the representative plaintiff in a proposed class action lawsuit connected to a June 2019 ransomware attack that lead to...
by Ryan Coyne | Jul 5, 2020 | HIPAA News
Several security flaws have been discovered in the remote access system, Apache Guacamole, a system which has been implemented by many companies to allow administrators and employees to access Windows and Linux devices remotely. The system has proven popular since the...
