Hundreds of Patient Files Found in NY Trash Causing HIPAA Violation
NBC New York I-Team found multiple boxes containing patient records in the trash outside of an Upper East side office building. The patient files were found [...]
HIPAA Security Risk Analysis: Wrapping it All Up
The HIPAA Security Rule requires that covered entities (health plans, healthcare clearinghouses, and healthcare providers who electronically transmit any health information in connection with a HIPAA related transaction), and [...]
Phishing Attacks at Magellan Health Subsidiaries
Magellan Health is a managed care provider based in Arizona. Recently, Magellan Health discovered that two of its subsidiaries suffered phishing attacks. The phishing attacks have [...]
HIPAA Security Risk Analysis Step 6: Determining the Level of Risk to ePHI
The HIPAA Security Rule requires that covered entities (health plans, healthcare clearinghouses, and healthcare providers who electronically transmit any health information in connection with a HIPAA [...]
Emergency Access Procedures Under the HIPAA Security Rule
Under the HIPAA Security Rule, covered entities (CEs) and business associates (BAs) are required to implement appropriate administrative, physical, and technical safeguards to ensure the confidentiality, integrity, and availability [...]
OCR’s Strict Enforcement of HIPAA Laws on Healthcare Organizations
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) was designed to protect individuals' health information. The HIPAA Privacy Rule ensures the protection of “individually identifiable health information” [...]
700,000 Patients Affected by August Healthcare Breaches
August was another month that saw several large healthcare breaches. There were a total of 44 August healthcare breaches reported to the Department of Health and [...]
OCR Reaches First Settlement Ever Under Right of Access Initiative
Earlier this year, the Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) announced an initiative. Under the initiative, OCR stated that a [...]
HIPAA Security Risk Analysis Step 5: Determining the Potential Impact of Threat Occurrence
The HIPAA Security Rule requires that covered entities (health plans, healthcare clearinghouses, and healthcare providers who electronically transmit any health information in connection with a HIPAA related transaction), and [...]
3,259 Employees Affected by Healthcare Phishing Attack
East Central Indiana School Trust (ECIST) is the latest victim of a healthcare phishing attack. A phishing attack occurs when a hacker sends an email, posing as a trusted [...]
