OCR

/Tag:OCR

Children’s Medical Center Issued $3.2M OCR HIPAA Penalty

Ouch! The part about this that really stings is this opening line "Children’s Medical Center of Dallas (Children’s) was recently given an OCR HIPAA civil money penalty due to ePHI disclosure and several years of HIPAA non-compliance, according to a Department of Health and Human Services (HHS) release." Several years of HIPAA non-compliance “OCR’s investigation [...]

February 8th, 2017|Categories: Compliance, Healthcare, HIPAA, OCR|Tags: , , , , , |

Healthcare attorneys call cybersecurity a growing concern

According to a survey undertaken by Bloomberg Law and the American Health Lawyers Association where both corporate attorneys and in-house counsel were polled, 97 percent of respondents believe they will experience an increased involvement in cases involving cybersecurity; 57 percent said it will be a significant increase. Fifty-three percent of those surveyed believe that cyberattacks are where [...]

November 13th, 2016|Categories: Compliance, Healthcare, HIPAA, OCR, Security, Social Engineering|Tags: , , , , |

Ransomware top concern for health IT, security execs – is it yours?

Is security in your top 3 - 5 initiatives and concerns for your business as you enter 2017? If not, it should be - especially if you are in the Healthcare industry. As we continually point out here on our blog, the state of IT Security, and more importantly attention and awareness towards IT security, [...]

November 11th, 2016|Categories: Compliance, Healthcare, HIPAA, IT Budgeting, OCR, Security, Social Engineering|Tags: , , , , , , , , , |

Ransomware attacks on med devices a real possibility

A report issued last year remains relevant today, especially on the heels of the recent attack on public internet DNS provider Dyn that effectively shut down 1/3 of the internet for a full day. This attack used personal home and business devices such as cameras and routers to perform a controlled, distributed and highly disruptive [...]

November 10th, 2016|Categories: Compliance, Healthcare, HIPAA, OCR, Security, Social Engineering|Tags: , , , , |

Move Beyond HIPAA 101 and More OCR Fines on the Way

Providers especially, and the industry as a whole, continue to struggle with HIPAA compliance. Much of it continues to be a box checking mentality that physicians and their administrators or CEO's have gotten into rather than a comprehensive understanding an a dedicated and thorough approach to compliance. We see it all the time. Our customers [...]

October 24th, 2016|Categories: Compliance, Healthcare, HIPAA, OCR|Tags: , |

Yes, The HIPAA Technical Safeguards Can Work To Prevent Healthcare Data Breaches

As hacking and cyberattacks continue to occur and lead to healthcare data breaches, technical safeguards are become increasingly important for healthcare organizations. As a refresher, the technical safeguards, as defined by the Department of Health and Human Services (HHS) in the HIPAA Privacy Rule, are “the technology and the policy and procedures for its use [...]

October 10th, 2016|Categories: Compliance, Healthcare, HIPAA, OCR|Tags: , , , , |

Healthcare Providers Be Prepared, More Oversight is Coming

The Department of Health and Human Services needs to improve its security and privacy guidance and oversight program, according to a report from the Government Accountability Office (GAO). What does this mean? Read the full article and report, and draw your own conclusions, but from our experience we are heading towards the days of more [...]

October 7th, 2016|Categories: Compliance, Healthcare, HIPAA, OCR|Tags: , , , , , , |

500 Million Hacked Yahoo Accounts Are A Phishing Paradise. Warn Your Users!

That's right, 500 Million Hacked Yahoo Accounts. This is an old hack, but Yahoo is now providing more information about the hack. Thanks to our friends at knowbe4.com for alerting us about this issue, and providing some very direct commentary about how this has been handled. We strongly encourage you to notify your employees, since [...]

September 23rd, 2016|Categories: Compliance, Healthcare, HIPAA, Security|Tags: , , , , , |

ONC establishes a suite of guides aimed at boosting EHR safety

The Office of the National Coordinator for Health IT announced this week that it has issued nine guides to help healthcare organizations assess the safety of electronic health records and to use them effectively. A recent article in FierceHealthcare outlined the initiative. The guides have been in the works since the U.S. Department of Health & Human Services [...]

August 2nd, 2016|Categories: Compliance, Healthcare, HIPAA, OCR|Tags: , , , , |

Why do I need to change my passwords?

We are asked this question frequently, and especially from our healthcare customers whose doctors and staff are frustrated by the password policies typically set to change them every 90 days. So, why do you have to change your passwords? Some simple and practical answers: You don't have to if you don't want to - it's your [...]

July 28th, 2016|Categories: Compliance, Healthcare, HIPAA, Security|Tags: , , , , , |