HIPAA

Mary D. Brandt, MBA, RHIA, CHE, CHPS, answers submitted questions on a variety of HIPAA topics.

The agency responsible for setting the rules for healthcare IT compliance underwent its own audit by the Office of Inspector General (OIG) recently. See what auditors found and where HHS needs to improve. 

Before the final HIPAA Privacy Rule updates are released, providers have a change to weigh in on the proposals. Read what they've said and how it might influence the final rule.

Chris Apgar, CISSP, answers submitted questions on a variety of HIPAA topics.

The Office for Civil Rights (OCR) recently agreed to a settlement with a clinical laboratory over potential HIPAA Security Rule violations. Read about what led to the settlement and how your facility can avoid similar compliance risks.

The Cybersecurity and Infrastructure Security Agency (CISA) and FBI have observed continued targeting through spearphishing campaigns using TrickBot malware in North America, according to a Joint Cybersecurity Advisory published in March and updated in May.

Ransomware continues to evolve, requiring healthcare organizations to consider new strategies to prevent breaches and the loss of patient data.   

Insider threats at healthcare organizations increased in 2020. Learn how to develop security practices to mitigate these threats.

In July 2020, managed IT services provider Blackbaud disclosed it was the victim of an unnamed ransomware attack. The company paid the ransom, according to a January 14, 2021 report by the HHS Cybersecurity Program titled “Distributed Attacks and the Healthcare Industry.”

Read about changes that could be coming for covered entities regarding records requests.