HIPAA Blog
Article – FBI: Attackers Targeting Anonymous FTP Servers in Healthcare
A warning issued by the FBI cautions healthcare providers to beware of threat actors, who are now targeting anonymous File Transfer Protocol Servers (FTP), associated with both medical and dental organizations. An article on Dark Reading goes into great detail about the trouble with anonymous FTP servers and why it is important to turn yours …
The post Article – FBI: Attackers Targeting Anonymous FTP Servers in Healthcare appeared first on HIPAA Secure Now!.
The Latest Details on HIPAA Compliance Audits
Deven McGraw, deputy director of the Department of Health and Human Services’ Office for Civil Rights has announced that the department’s plans for initiating onsite audits is currently on hold and will remain so until more than 200 desk audits have been completed. An article over on Data Breach Today gives us great detail on …
The post The Latest Details on HIPAA Compliance Audits appeared first on HIPAA Secure Now!.
Office for Civil Rights Issues Second Largest HIPAA Fine to Date – $5.5 Million
According to an article over on tripwire, a covered entity is facing serious penalties after the Office for Civil Rights issued them a hefty fine for their failure to comply with audit procedures including review, modification and termination of users’ access. In the scope of the investigation, it was discovered that more than 100,000 individuals …
The post Office for Civil Rights Issues Second Largest HIPAA Fine to Date – $5.5 Million appeared first on HIPAA Secure Now!.
Article: Snooping St. Charles Health System Employee Accessed Almost 2,500 Patient Records
According to an article on HIPAA Journal, over a 27 month period an employee of St. Charles Health System in Oregon accessed nearly 2,500 patient records without authorization. All it took to discover the unnamed employee had been inappropriately accessing patient records was one incident that sparked further review, occurring on January 16, 2017. The …
The post Article: Snooping St. Charles Health System Employee Accessed Almost 2,500 Patient Records appeared first on HIPAA Secure Now!.
Healthcare firms to increase security spending
With the dramatic number of security breaches over the last few years, it should come as no surprise that the healthcare industry has plans to increase spending on IT security. An article over at CIO talks about just how necessary the increase in IT security spending really is. According to a survey released this Tuesday, …
The post Healthcare firms to increase security spending appeared first on HIPAA Secure Now!.
Ransomware: could smaller practices be the next victims?
As you may know, ransomware has become a top concern for organizations across the globe as cybercriminals continue to flex their muscles and show just how easily they can take down an organization through a simple e-mail. An article over at SC Magazine takes a look at the threat of ransomware to smaller practices. What is …
The post Ransomware: could smaller practices be the next victims? appeared first on HIPAA Secure Now!.
Want to Score with MACRA? Perform a HIPAA Risk Assessment.
Congress may be poised to roll back the Affordable Care Act, but HIPAA and MACRA, the Center for Medicare & Medicaid’s (CMS) new model for reimbursements, are as certain to remain as death and taxes. Moreover, MACRA and HIPAA go hand in hand. Physicians cannot participate in MACRA, which went into effect on January 1, …
The post Want to Score with MACRA? Perform a HIPAA Risk Assessment. appeared first on HIPAA Secure Now!.
CMS extends Meaningful Use deadline to March 13, 2017
The Centers for Medicare & Medicaid Services extended the deadline for Meaningful Use requirements for providers participating in the Medicare EHR Incentive program. The new deadline is March 13, 2017, a two-week extension from the previous Feb. 28 deadline, according to a CMS spokesperson. Eligible providers, hospitals, and critical access hospitals must attest to the …
The post CMS extends Meaningful Use deadline to March 13, 2017 appeared first on HIPAA Secure Now!.
Updated 2017 HIPAA Training
We are excited to announce that the HIPAA training classes have been updated for 2017. The update includes the HIPAA Security and Privacy classes for both HIPAA Covered Entities and Business Associates. More engaging The training now utilizes more multimedia, video and engaging content. In fact, we have completely updated and reproduced our training videos. …
The post Updated 2017 HIPAA Training appeared first on HIPAA Secure Now!.
OCR’s guidance to audit controls
In the January, 2017 edition of the OCR Cyber Newsletter (PDF), OCR gives guidance to what is required from Covered Entities and Business Associate regarding auditing / monitoring of access to PHI. Covered Entities and Business Associates should make sure that they appropriately review and secure audit trails, and they use the proper tools to …
The post OCR’s guidance to audit controls appeared first on HIPAA Secure Now!.