Proposed Law Aims to Address Medical Device Cybersecurity

A bill recently introduced in the U.S. House of Representatives aims to address gaps in medical device cybersecurity. Details of Proposed Law to Address Medical Device Cybersecurity H.R. 7667 seeks to amend the Federal Food, Drug, and Cosmetic Act to revise and extend the user-fee programs for prescription drugs, medical devices, generic drugs, biosimilar biological products, and other purposes. One of those [...]

2022-06-13T15:44:49-04:00June 8th, 2022|

Is There a Hole in SOC 2 for Healthcare?

As incidents of cybercrime increase, forward-thinking healthcare organizations and the companies that support them are looking for ways to minimize the risk of becoming a victim of these illegal activities. One solution that has become more popular is third-party assurance and advisory services such as SOC 2®. What does SOC 2 really mean, what is involved in achieving this status, what is [...]

2022-05-20T16:54:28-04:00May 9th, 2022|

How HIPAA Plays a Part in Patient Safety Awareness Week 2022

Each year medical providers around the country take a week to highlight and emphasize patient safety awareness. March 13-19 has been designated as Patient Safety Awareness Week in 2022. The week's primary focus is preventing errors and accidental incidents that cause harm to patients within the clinical setting. It also provides an excellent opportunity to address potential harms to patients outside the [...]

2022-05-06T17:03:33-04:00March 11th, 2022|

Should You Have a HIPAA Compliant Password Manager?

As technology makes our lives easier, it brings the challenge of remembering all the various usernames and passwords required to access our data. Many of us take advantage of password management applications in our personal lives, but is there a way to bring that convenience into our work life? Does a HIPAA compliant password manager even exist? We will look at what [...]

2022-05-06T17:03:38-04:00February 7th, 2022|

HIPAA Compliance Helps Prevent Small Practice Cybercrime

Most security experts agree that it is no longer a question of if cybercriminals will target your practice, but when. Hacking, phishing attacks, and ransomware can effectively cripple your business and cost you resources and reputation. But the best tool to prevent small practice cybercrime can be as basic as having a truly effective HIPAA compliance strategy. Reasons to Prevent Small Practice [...]

2022-05-06T17:03:41-04:00January 18th, 2022|

Cyber Threats in Healthcare and FIN12 Ransomware

Cyber threats in healthcare are constantly evolving and becoming more complex. A recent report released by Mandiant Intelligence uncovered the very real threat FIN12 ransomware poses to the healthcare sector. According to the report, 20% of FIN12 ransomware attacks target the healthcare sector. Healthcare organizations in North America in particular have cause for concern, with 85% of FIN12 ransomware attacks targeting victims in North America. [...]

2022-05-06T17:03:51-04:00November 3rd, 2021|

Healthcare Cyber Attacks on the Rise

Several major health systems have reported an onslaught of phishing, spoofing, and ransomware incidents. While these healthcare cyber attacks use different tactics, they all have the same end goal - to steal sensitive patient information.  Phishing Attack Targets UMass Memorial Health UMass Memorial Health recently informed patients that their protected health information (PHI) was potentially compromised in a healthcare cyber attack stemming [...]

2022-05-06T17:03:52-04:00October 27th, 2021|

Using the SLAM Method to Prevent HIPAA Phishing Attack

Cybersecurity is at the top of mind for many businesses, especially during October’s Cybersecurity Awareness Month. The main cause for concern for healthcare organizations in particular is how to recognize phishing emails to prevent breaches. There is a simple method that healthcare organizations can use to aid in the identification of phishing emails, the SLAM method.  What Does the SLAM Acronym Stand [...]

2022-05-06T17:03:52-04:00October 22nd, 2021|

Health Data Security Compromised by Third-party Apps

A new report published by Approov uncovered major cybersecurity flaws in third-party health apps that populate patient data from electronic health record systems. Through research conducted by cybersecurity analyst Alissa Knight, it was found that the health data security of many of these apps are flawed, putting the patients that use them at risk. Report Uncovers Major Vulnerabilities The Fast Healthcare Interoperability [...]

2022-05-06T17:03:52-04:00October 20th, 2021|

Cybersecurity Trends in Healthcare

In the midst of Cybersecurity Awareness Month, it is important to consider how you are handling your security, and if there have been changes in the law that require you to adjust your strategy. Although HIPAA has not undergone any significant changes recently, there have been several developments, such as large-scale breaches, that have caused the government to look more closely at how cybersecurity in healthcare has been [...]

2022-05-06T14:38:08-04:00October 8th, 2021|