News & Analysis

More breaches, more lessons: Inside OCR’s latest settlements

July 9, 2025
HIM Briefings

Recent enforcement actions emphasize the importance of completing timely risk analyses, implementing risk management plans, and meeting notification deadlines.

Taking a more proactive approach to risk analysis

June 18, 2025
HIM Briefings

A recent enforcement action highlights the need for HIM professionals to treat risk analysis as a foundation, not a checkbox. 

Using AI to improve coding, documentation, and data integrity

June 11, 2025
HIM Briefings

Read expert insights on the most promising applications of artificial intelligence (AI) in the HIM field, such as data abstraction and prior authorization workflows. 

Dissecting comments on the proposed HIPAA Security Rule update

May 14, 2025
HIM Briefings

Dissect comments on the proposed HIPAA Security Rule update and get expert insights on preparation and compliance.

HIPAA Q&A: Developing a facility security plan, access controls, and more

December 18, 2024
Briefings on HIPAA

Julia Huddleston, CIPP/US, CIPM, CCSFP, answers submitted questions on a variety of HIPAA topics.

OCR's cybersecurity alert addresses human vulnerabilities in social engineering attacks

December 11, 2024
Briefings on HIPAA

Between 2019 and 2023, large breaches stemming from hacking and IT incidents, including social engineering, increased by 89%. This underscores that cybersecurity is not just a technological challenge but also a human one—in fact, 68% of breaches examined by Verizon in a 2022–2023 data set involved attacks on people rather than technical vulnerabilities.

Pages