The United States Department of Health and Human Services' Office for Civil Rights has just issued a checklist and infographic to aid healthcare organizations and their vendors in quickly responding to cyberattacks.
Does the HIPAA Breach Notification Rule apply to all Covered Entities and Business Associates, Even Smaller Ones? To many of you reading this post this question seems ridiculous. You know the answer. However, I get asked this question so frequently that I decided to answer it with a blog post to save time next time … Continue reading Are Smaller Healthcare Practices Required to Report a Ransomware or Potential Data Breach?
Healthcare data is one of the most desirable forms of data for cyber criminals to steal because its value on the cyber black market -- the Dark Web -- is much higher than most other forms of data. While there are several reasons for this, the recent study Your Life, Repackaged and Resold: The Deep … Continue reading Why is Healthcare Data So Valuable to Cyber Criminals?
I recently had the pleasure of presenting in a webinar series titled Is Your Practice "On the Hook?" to members of the Texas Dental Association and the Oklahoma Dental Association. Key points of the presentation, which focused on cyber security and data breaches in the healthcare industry, explained why protected health information (PHI) and electronic healthcare … Continue reading Does Data Security Have Your Healthcare Practice “On the Hook”?
During a recent presentation a member of the audience asked me why cyber criminals would want to steal a person's healthcare data. It is easy to understand why they would want to steal payment card data -- but healthcare data -- not so obvious. Here is a great answer: A crook would love [healthcare data] because, “in the world … Continue reading Why do cyber criminals want your healthcare data?