PIH Health Pays $600K Settlement After Phishing Attack
In a stark reminder of how devastating phishing attacks can be, the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) has reached a [...]
Training and Compliance, Two Peas in a Pod
You're here, so you likely already know that training is a key part of compliance. Several things factor into compliance, and each component is essential. However, training [...]
OCR Settles with Guam Memorial Hospital Over Ransomware-Related Violations
The U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), has announced yet another enforcement action under the HIPAA Security Rule—this time involving [...]
Regulatory Compliance in Healthcare: Safeguarding Patients, Professionals, and Systems
Healthcare regulatory compliance means healthcare organizations are meeting a wide range of laws and standards that includes everything from billing and safety to data protection and patient [...]
Q1 2025 Healthcare Data Breach Wrap-Up: 5.6 Million Patient Records Exposed
If the first quarter of 2025 is any indication, healthcare cybersecurity is in critical condition. From January through March, the healthcare industry saw 160 data breaches, compromising [...]
Northeast Radiology, P.C. Faces Scrutiny for Potential Security Rule Violation
On April 10, 2025, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced a settlement with Northeast Radiology, P.C.. This settlement is [...]
March 2025 Healthcare Data Breaches: Hacking Remains the Top Threat
Healthcare cybersecurity continues to face serious challenges in 2025. In March alone, 44 data breaches across the industry compromised the protected health information (PHI) of 1,583,518 patients—a [...]
How is Compliance Program Effectiveness Measured?
Meeting regulatory compliance requirements is a complex process that involves the adoption of a compliance program. When building your compliance program it's important to consider what components [...]
How to Make a HIPAA-Compliant Website: A Step-by-Step Guide
Making a HIPAA-compliant website doesn’t have to mean rebuilding your existing website from scratch or paying for expensive web hosting. Whether you're working with a small medical [...]
Healthcare Data Breaches in February 2025: Over 1.2 Million Patients Affected
In yet another alarming month for healthcare cybersecurity, 1,238,201 patients had their personal and medical information exposed due to 46 data breaches in February 2025. The numbers [...]
