0

Vulnerability Management

Vulnerability Management – $150,000 Fine Issued for Unpatched Software Anchorage Community Mental Health Services (ACMHS) failed to implement software patches resulting in a breach that affected approximately 2,700 patients. The vulnerability in their system could have been addressed by software …


0

Network Management

$418,000 Fine Issued for Poor Network Management Virtua Medical Group (VMG), based in New Jersey, compromised the PHI of 1,650 individuals as the result of a misconfigured server. A vendor of Virtua updated software on a website that stored documents. …


0

HIPAA Asset Management

Lost Laptop Puts 1,500 Patients at Risk — Pointing to Need for HIPAA Asset Management An employee of Philadelphia’s Department of Behavioral Health and Intellectual Disability Services (DBHIDS) lost an unencrypted laptop on public transportation. The laptop contained the PHI …


0

Data Loss Prevention

Data Protection (Part V): Data Loss Prevention Patient Data Loss as a Result of Ransomware Attack FABEN Obstetrics and Gynecology was the vicitim of a ransomware attack that infected servers containing patient files from January 2007 through April 2017. A …


0

Access Management

Limiting PHI Exposure (Part IV): Access Management What is Access Management? As part of the HIPAA Privacy Rule, user access to PHI must be restricted to the “minimum necessary” that allows the individual to perform his or her job functions. …


0

Email Protection

Using Clinical Email (Part II): Secured Email Protection Systems by Monica McCormack and Marlene M. Maheu, PhD When does email need to be HIPAA Compliant?  Email is subject to the HIPAA Security Rule and therefore must have the proper measures …


0

Phishing Email

Phishing Emails and Why Encryption Software is Warranted One of the most common ways hackers gain access to a computer system is through phishing emails. Phishing emails can be difficult to recognize as hackers disguise themselves as a trusted entity, …


0

HIPAA Certification

HIPAA Certification? When it comes to HIPAA compliance, many healthcare professionals are searching for a way to certify their efforts. However, it must be noted that the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) currently …


0

Ransomware Attacks

Ransomware Attacks Increase 195% in Q1 2019   Ransomware attacks continue to be the cause of major data breaches. Healthcare, in particular, is at a heightened risk. A report was recently released detailing the impact of ransomware attacks, which found …