OCR to Answer Questions in HIPAA Recognized Security Practices Video

In January of 2021, an amendment to the HITECH Act, known as HR 7898, was signed into law. The law has several nicknames, including the Cybersecurity Best Practices Bill, the HIPAA Security Rule Safe Harbor Law, and the HIPAA Security Rule Recognized Security Practices bill. While the bill has several nicknames, it does not yet have any specific enforcement rules. Under the [...]

2022-06-24T16:31:59-04:00June 20th, 2022|

Proposed Law Aims to Address Medical Device Cybersecurity

A bill recently introduced in the U.S. House of Representatives aims to address gaps in medical device cybersecurity. Details of Proposed Law to Address Medical Device Cybersecurity H.R. 7667 seeks to amend the Federal Food, Drug, and Cosmetic Act to revise and extend the user-fee programs for prescription drugs, medical devices, generic drugs, biosimilar biological products, and other purposes. One of those [...]

2022-06-13T15:44:49-04:00June 8th, 2022|

Consolidated Appropriations Act 2022 – What’s In It?

In March of 2022, President Biden signed into law the Consolidated Appropriations Act 2022. The Consolidated Appropriations Act 2022 wears many hats. The law reauthorizes the Anti-Violence Against Women Act, increases defense spending, provides aid to Ukraine, and funds the White House internship program, allowing interns to be paid for the first time. One of the less big-ticket - but by no [...]

2022-05-31T08:23:19-04:00May 18th, 2022|

Is There a Hole in SOC 2 for Healthcare?

As incidents of cybercrime increase, forward-thinking healthcare organizations and the companies that support them are looking for ways to minimize the risk of becoming a victim of these illegal activities. One solution that has become more popular is third-party assurance and advisory services such as SOC 2®. What does SOC 2 really mean, what is involved in achieving this status, what is [...]

2022-05-20T16:54:28-04:00May 9th, 2022|

HHS Warns of Increases in Insider Data Breaches

In April of 2022, the Department of Health and Human Services (HHS)’ Office of Information Security issued a 27-page publication, entitled “Insider Threats in Healthcare.” The publication covers a significant trend in cybersecurity: More and more, healthcare organization data breaches are being caused by internal (employee) action as opposed to actions from outside third parties. HHS defines an “Insider threat in the [...]

2022-05-06T17:03:27-04:00April 27th, 2022|

HHS Seeks Public Input on How to Implement Cybersecurity Best Practices Bill

In January of 2021, HR 7898, nicknamed the Cybersecurity Best Practices bill, was signed into law. Under this law, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) must consider whether an entity used recognized cybersecurity best practices in the year preceding a violation when deciding whether to penalize the organization.  In April of 2022, OCR issued a [...]

2022-05-06T17:03:29-04:00April 7th, 2022|

OCR Cybersecurity Newsletter Offers Guidance Against Common Cyberattacks

Each quarter the Department of Health and Human Services’ Office for Civil Rights issues a cybersecurity newsletter. The newsletter highlights cybersecurity trends affecting the healthcare industry. As the March 2022 OCR Cybersecurity Newsletter notes, the number of hacking and IT incidents affecting electronic protected health information (ePHI) has shot up, and rather quickly at that. In fact, there has been a 45% increase in the number [...]

2022-05-06T17:03:31-04:00March 25th, 2022|

How HIPAA Plays a Part in Patient Safety Awareness Week 2022

Each year medical providers around the country take a week to highlight and emphasize patient safety awareness. March 13-19 has been designated as Patient Safety Awareness Week in 2022. The week's primary focus is preventing errors and accidental incidents that cause harm to patients within the clinical setting. It also provides an excellent opportunity to address potential harms to patients outside the [...]

2022-05-06T17:03:33-04:00March 11th, 2022|