News & Analysis

HHS OIG audit reveals lessons learned for security officers

August 1, 2021
Briefings on HIPAA

The agency responsible for setting the rules for healthcare IT compliance underwent its own audit by the Office of Inspector General (OIG) recently. See what auditors found and where HHS needs to improve. 

CISA, FBI issue joint warning, mitigation tactics on TrickBot malware

July 1, 2021
Briefings on HIPAA

The Cybersecurity and Infrastructure Security Agency (CISA) and FBI have observed continued targeting through spearphishing campaigns using TrickBot malware in North America, according to a Joint Cybersecurity Advisory published in March and updated in May.

More lessons in risk analysis, HIPAA security compliance in latest OCR resolution agreement

July 1, 2021
Briefings on HIPAA

The Office for Civil Rights (OCR) recently agreed to a settlement with a clinical laboratory over potential HIPAA Security Rule violations. Read about what led to the settlement and how your facility can avoid similar compliance risks.

HIPAA Q&A: Business associate compliance, telework, and security

July 1, 2021
Briefings on HIPAA

Chris Apgar, CISSP, answers submitted questions on a variety of HIPAA topics.

Your biggest threat may be on the inside

June 1, 2021
Briefings on HIPAA

Insider threats at healthcare organizations increased in 2020. Learn how to develop security practices to mitigate these threats.

Ransomware wrought havoc in 2020—sharpen tools, watch vendors to avoid breaches

June 1, 2021
Briefings on HIPAA

Ransomware continues to evolve, requiring healthcare organizations to consider new strategies to prevent breaches and the loss of patient data.   

Pages