Category: Security

The U.S. Department of Health & Human Services Office for Civil Rights has levied combined fines of nearly $2 million against two healthcare organizations to settle potential HIPAA violations from unencrypted laptops that were stolen. read more …read more    

Serving notice that “covered entities and business associates must understand that mobile device security is their obligation,” the HHS Office for Civil Rights has settled with two organizations for a combined $1,975,220 penalty after their unencrypted computers were stolen. [See also: Why does healthcare resist encryption? ] read more …read more    

Two healthcare organizations have paid the U.S. Department of Health and Human Services Office for Civil Rights (OCR) $1,975,220 collectively to resolve potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security Rules. Two healthcare organizations have paid the U.S. Department of Health and Human Services Office for Civil Rights (OCR)…

The healthcare industry needs more “security advocacy” for privacy to improve, according to Susan Widup, a senior analyst and co-author of Verizon’s latest data breach investigations report, published this month. read more …read more    

Healthcare has a few things to do differently in the privacy and security arena — one of them being: Start taking it seriously. This according to Verizon’s annual breach report released today. The new 2014 Verizon Data Breach Investigations Report highlights a concerning carelessness regarding privacy and security, specific to the healthcare industry. read more…

University Urology, P.C. of Knoxville, Tenn. has acknowledged a security breach in which an administrative employee provided patient information to a competing healthcare provider for the purpose of the competitor soliciting patient business. University Urology, P.C. of Knoxville, Tenn. has acknowledged a security breach in which an administrative employee provided patient information to a competing…

On April 1, a cross-section of healthcare industry information security executives took part in the first full-day interactive simulation of an industry-wide cyber threat. During the CyberRX simulation, companies displayed a wide range in terms of organizational preparedness for processing threat intelligence and communicating and engaging with other stakeholders. On April 1, a cross-section of…

What’s vital for 2014 on National Coordinator for Health IT Karen DeSalvo’s agenda? Privacy and security, she said in a recent interview. read more …read more    

UPMC officials say the number of employees affected by a data breach at the renowned medical center is much higher than originally reported – from 322 employees first reported on March 6, now up to 27,000 of a total of 62,000 employees, the Pittsburgh Tribune-Review reports. read more …read more    

UPMC data breach may affect as many as 27,000 employees UPMC (PA) reports that hackers have stolen the personal information of 27,000 of its employees. 788 are reporting that their tax returns were stolen when the information was used to file fraudulent tax returns, while others are reporting that unauthorized bank accounts are being opened…