Should You Have a HIPAA Compliant Password Manager?

As technology makes our lives easier, it brings the challenge of remembering all the various usernames and passwords required to access our data. Many of us take advantage of password management applications in our personal lives, but is there a way to bring that convenience into our work life? Does a HIPAA compliant password manager even exist? We will look at what [...]

2022-05-06T17:03:38-04:00February 7th, 2022|

New Website Aims to Align HHS Cybersecurity Guidance

The Department of Health and Human Services has launched a new website designed to align HHS cybersecurity guidance across the healthcare spectrum and facilitate the exchange of best practices and information. Collaboration is Key to HHS Cybersecurity Guidance Launched in December 2021, the website reflects the collaborative effort between the agency and the private sector that has emerged since the agency established [...]

2022-05-06T17:03:40-04:00January 19th, 2022|

Healthcare Cyber Attacks on the Rise

Several major health systems have reported an onslaught of phishing, spoofing, and ransomware incidents. While these healthcare cyber attacks use different tactics, they all have the same end goal - to steal sensitive patient information.  Phishing Attack Targets UMass Memorial Health UMass Memorial Health recently informed patients that their protected health information (PHI) was potentially compromised in a healthcare cyber attack stemming [...]

2022-05-06T17:03:52-04:00October 27th, 2021|

Using the SLAM Method to Prevent HIPAA Phishing Attacks

Cybersecurity is at the top of mind for many businesses, especially during October’s Cybersecurity Awareness Month. The main cause for concern for healthcare organizations in particular is how to recognize phishing emails to prevent breaches. There is a simple method that healthcare organizations can use to aid in the identification of phishing emails, the SLAM method.  What Does the SLAM Acronym Stand [...]

2022-11-04T09:10:33-04:00October 22nd, 2021|

Health Data Security Compromised by Third-party Apps

A new report published by Approov uncovered major cybersecurity flaws in third-party health apps that populate patient data from electronic health record systems. Through research conducted by cybersecurity analyst Alissa Knight, it was found that the health data security of many of these apps are flawed, putting the patients that use them at risk. Report Uncovers Major Vulnerabilities The Fast Healthcare Interoperability [...]

2022-05-06T17:03:52-04:00October 20th, 2021|

7 Healthcare Cybersecurity Facts You Need to Know

Cybersecurity should be at the forefront of any business’ mind, and this is especially true when it comes to healthcare organizations. Healthcare organizations have become the primary target for hackers due to the wealth of information they hold on patients. Read the healthcare cybersecurity facts you need to know below. Healthcare Cybersecurity Facts Human error causes the majority of breaches Implementing an [...]

2022-05-06T14:38:09-04:00September 21st, 2021|

How to Prevent Phishing Attacks in Healthcare

Malware and ransomware attacks have become more prevalent in recent times across all industries and market sectors. Large-scale attacks such as the ones perpetrated on Colonial Pipeline and JBS Foods were widely covered by the media. But these are not the only examples of successfully conducted attacks on businesses of all types and sizes. The healthcare industry presents attractive targets for hackers [...]

2022-05-06T14:43:58-04:00August 20th, 2021|

HIPAA Guidelines for Reception Areas: How to Avoid Accidental PHI Disclosures

HIPAA regulates much more in a healthcare business than most would think. Did you know that HIPAA dictates specific guidelines on how protected health information may be used in a healthcare provider’s reception area? So that you can avoid HIPAA violations by accidental unauthorized disclosure of PHI, HIPAA guidelines for reception areas are discussed. HIPAA Guidelines for Reception Areas There are several [...]

2022-07-27T15:52:27-04:00August 13th, 2021|

Average Cost of Healthcare Data Breach $4.62 Million

Each year, IBM Security and Ponemon Institute publish their “Cost of a Data Breach Report” in which they assess the previous year’s data breaches. In the 2021 breach report, it was determined that 2020 healthcare data breaches cost organizations $2 million to $9.42 million per incident. Furthering that ransomware attacks cost an organization an average of $4.62 million per incident. With ransomware attacks accounting for more than half [...]

2022-05-06T14:43:58-04:00August 5th, 2021|

ePHI Security Emphasized in HHS Summer Newsletter

Although the HHS has long stressed the importance of ePHI security, with the influx of healthcare breaches, it is clear that many organizations have not heeded the warning. With an increase in breaches across all industries, cybersecurity has become the focus of many government agencies including the HHS. Earlier this month the HHS published its “Summer 2021 Cybersecurity Newsletter” further emphasizing the importance of information access [...]

2022-05-06T14:38:10-04:00July 30th, 2021|