When it comes to supporting your business goals, social media platforms like Instagram, Facebook, and even Google Reviews are invaluable tools for connection and growth. However, publicity and privacy don’t often go hand-in-hand. HIPAA sets strict standards for the protection of electronic protected health information (ePHI), and non-compliance can result in significant fines and reputational...
In today’s world where 45% of healthcare organizations reported experiencing a phishing attack in the previous 12 months, ongoing cybersecurity is no longer just a compliance checkbox – it’s a strategic imperative. As cyber threats continue to escalate in sophistication and frequency, small to mid-sized covered entities and business associates must go beyond mere compliance...
Introduction: HIPAA-enforcer, the Office for Civil Rights (OCR), recently published Director Melanie Fontes Rainer’s presentation from HIPAA Summit 41. The message is clear: cybersecurity is the department’s top priority for 2024. Prioritizing Investigations: The presentation began with a summary of top investigation priorities. Fontes Rainer highlighted that the OCR will focus primarily on cases...
Morristown, New Jersey: HIPAA Secure Now announces a new line of Microsoft 365-focused offerings, promoting user engagement with ongoing Nano Tips “Nanos©” and expanding their training with new cybersecurity and productivity courses. Users can achieve certificates in fundamental Word, Outlook, Excel, PowerPoint, and Teams courses, and earn bonus points towards their gamified Employee Secure Score...
In addition to most in-demand, most impactful, and most burnt-out, healthcare has also recently taken the #1 title for most ransomware attacks in 2023. FBI’s Alarming Findings The Federal Bureau of Investigation’s (FBI) 2023 Internet Crime Report paints a stark picture: 880,418 complaints $12.5 billion in financial losses (22% surge from 2022) Healthcare organizations the...
Introduction: The Human Element When it comes to healthcare today, many employees are incredibly busy, exhausted, and bogged down by tedious administrative tasks. Cyber criminals rely on these factors to trick distracted employees into falling for social engineering scams. Common red flags like suspicious sender addresses, unexpected attachments, and urgent language can easily be missed...
More than just a mandatory HIPAA requirement, Security Risk Assessments are critical to ensuring the security of your healthcare organization. As cyber threats evolve, so must our strategies to safeguard electronic Protected Health Information (ePHI). In this blog, we’ll navigate through the steps involved in a comprehensive risk assessment, empowering covered entities and business associates...
What We Know So Far (February 2024) With cyber-attacks on the rise in healthcare, HIPAA enforcer, the Department of Health and Human Services (HHS), has taken proactive measures to enhance the sector’s resilience against these growing threats. As covered entities and business associates adapt to emerging challenges, understanding and implementing the voluntary Healthcare and Public...
Remember our call to action for a Password Audit in our Healthcare Cybersecurity Resolutions blog a few weeks back? As January draws to a close, now is the perfect time to tick off this achievable and cost-free goal. Dive into this week’s blog for an in-depth guide on crafting and sustaining robust passwords that fortify...
As healthcare remains one of the top targeted fields for cyber attacks, most practices at this point have established a basic level of cybersecurity safeguards and annual training. However, phishing has remained a persistent and potent threat due to cyber criminals’ exploitation of the human element. This blog post aims to shed light on the...
Recent Comments