HIPAA Journal

JULY 31, 2023

a government services contracting company, has announced in a Securities and Exchange Commission (SEC) filing that hackers exploited a zero-day vulnerability in Progress Software’s MOVEit Transfer solution in May 2023 and accessed the protected health information (PHI) of between 8 and 11 million individuals.

Governance 70

Governance Medicare Medicare Ransomware 70

HIPAA Journal

JANUARY 30, 2023

The National HIPAA Summit is the leading forum on healthcare EDI, privacy, breach notification, confidentiality, data security, and HIPAA compliance, and the deadline for registration for the Virtual 40th National HIPAA Summit is fast approaching. This will be followed by the preconference basic training day on March 2, 2023.

US Department of Health and Human Services 85

US Department of Health and Human Services HIPAA Compliance Medicaid 85

HIPAA Journal

MARCH 17, 2023

Considering the Health Insurance Portability and Accountability Act (HIPAA) is now in its third decade, the Privacy Rule took effect 20 years ago, and compliance with the HIPAA Security Rule has been mandatory for 18 years, there have been relatively few financial penalties over the years, with just 130 imposed by OCR to resolve HIPAA violations.

HIPAA 88

HIPAA Compliance Health Insurance Governance 88

HIPAA Journal

AUGUST 21, 2023

The figures this month bring the running breach total for 2023 up to 395 incidents, across which the records of 59,569,604 individuals have been exposed or stolen. The average breach size for 2023 is 150,809 records and the median breach size is 4,209 records. Over the past 12 months, more than 81.76 million and 47.6

Ransomware 79

Ransomware HIPAA Medicare Medicare 79

Healthcare IT News - Telehealth

JANUARY 23, 2023

We spoke with the HIMSS government relations team for their thoughts on those priorities and more in 2023 and beyond. HIMSS has also aggressively supported the Connect for Health Act , and a bill that's expected to be reintroduced this year, said Amanda Krzepicki, government relations manager at HIMSS. " Leary said.

Medicare 150

Medicare Medicare Governance Medicaid 150

Compliancy Group

JANUARY 5, 2024

Traditional enforcement priorities for HHS’ Office of Civil Rights, would include enforcement of the HIPAA Privacy Rule right of access and enforcement of the HIPAA Security Rule. In 2023, OCR continued to enforce compliance with the HIPAA Privacy Rule right of access rule. So, what are our 2024 HIPAA predictions?

HIPAA 52

HIPAA Compliance COVID-19 Ransomware 52

Total Medical ComplianceHIPAA

NOVEMBER 13, 2023

HIPAA: Who can be fined under the Information Blocking Rule and what are the Office of Inspector General’s (OIG) priorities? Only certain entities are currently subject to an OIG information blocking penalty. They also expect they will be receiving more complaints than they will be able to initially investigate.

HIPAA 52

HIPAA Medicaid Medicaid Medicare 52

Healthcare Law Blog

DECEMBER 2, 2022

While the Health Insurance Portability and Accountability Act (“HIPAA”) governs the privacy and security of protected health information generally, Part 2 specifically governs the medical records of federally assisted substance use treatment programs (“SUD Records”). Part 2 (“Part 2”).

Governance 52

Governance COVID-19 HIPAA Health Insurance 52

Healthcare IT Today

JANUARY 3, 2023

As we head into 2023, we wanted to kick off the new year with a series of 2023 Health IT predictions. The deployment of automation and AI in healthcare organizations will expand in 2023 to handle the growing demand for digital healthcare services, especially in times of shortages of medical staff.

Governance 123

Governance Fraud Medical Personnel COVID-19 123

C&M Health Law

DECEMBER 13, 2022

In 2023, we expect to see health care policy developments in the following key domains: reproductive rights and gender discrimination, health data privacy, telehealth, and price transparency. . part 2 (“Part 2”) governing the confidentiality of substance use disorder records. Price Transparency .

COVID-19 98

COVID-19 Medicare Medicare Hospitals 98

Healthcare IT Today

MARCH 24, 2023

According to the company, which just released a letter outlining the nature of the data issue, Cerebral discovered a breach on January 3, 2023. The announcement follows news of two other digital health companies recently fined by the federal government for improper data-sharing practices.

HIPAA 95

HIPAA Health Insurance Governance Telemedicine 95

AIHC

AUGUST 3, 2023

The Health Insurance Portability and Accountability Act (HIPAA), Public Law 104-191 was implemented in 1996. Although updates have been made to HIPAA, artificial intelligence (AI) technology is evolving faster. According to an article published in April 2023 in an article Is ChatGPT Safe?

HIPAA 52

HIPAA Compliance Health Insurance Doctors 52

Medisys Compliance

JANUARY 30, 2023

The medical billing industry is a complex and ever-changing field, and it is crucial for healthcare providers and billing companies to stay compliant with government regulations. Violations of the False Claims Act can result in significant financial penalties, including fines and exclusion from government healthcare programs.

Compliance 52

Compliance Medical Billing Medical Billing Outsourcing HIPAA 52

MRO Compliance

MARCH 30, 2023

Interoperability Regulations and the Effects on Health Information Management In January 2023, the Health Data Management COVER story focused on the future of interoperability. As a follow up to this cover story, I wrote a guest article for them entitled 3 specific areas of data sharing to clarify and consider in 2023.

HIPAA 130

HIPAA Governance 130

Healthcare IT Today

OCTOBER 21, 2023

Experts agreed that health data utilities are in their early stages but will start to see additional value when they engage with government agencies in their communities and enable data sharing across state lines. Read more… How Communication Platforms Can Harness Generative AI in a HIPAA-Compliant Way.

Compliance 109

Compliance HIPAA Governance 109

HIPAA Journal

APRIL 22, 2024

BlackSuit is a relatively new ransomware operation that was discovered in May 2023. In November 2023, the Health Sector Cybersecurity Coordination Center (HC3) warned the healthcare and public health sector about BlackSuit ransomware. As of April 22, 2024, Octapharma is not showing on the group’s data leak site.

Ransomware 110

Ransomware Public Health HIPAA Governance 110

Compliancy Group

NOVEMBER 30, 2022

In other words, the proposed rule allows provider sharing of records in a similar manner to which HIPAA permits such sharing. More information about 42 CFR Part 2 and HIPAA care coordination is provided below. 42 CFR Part 2 and HIPAA Care Coordination: What’s in the Proposed Rule? government department or agency.

HIPAA 52

HIPAA Governance Health Insurance Compliance 52

HIPAA Journal

APRIL 29, 2024

Berry, Dunn, McNeil & Parker, LLC (BerryDunn) provides health data analytics services to healthcare providers, health insurers, and government regulatory and healthcare policy agencies and its clients provide BerryDunn with personal and health data to allow the firm to perform its contracted services.

Health Insurance 95

Health Insurance Health Analytics HIPAA Medicaid 95

HIPAA Journal

MAY 2, 2024

According to Recorded Future, there were 358 ransomware attacks on healthcare organizations in 2023, a year-on-year increase of 46%. Across all industry sectors, 94% of IT security leaders said they had experienced a significant cyberattack in 2023, and an average of 30 attacks in the past year.

Ransomware 88

Ransomware HIPAA Governance 88

Compliancy Group

FEBRUARY 16, 2023

Open source is not particularly secure, and when your systems have the potential to access healthcare data, you have to think of how HIPAA factors in. HIPAA and ChatGPT ChatGPT is not HIPAA compliant. How ChatGPT uses and discloses consumer data is in direct contradiction with how HIPAA permits patient information to be used.

HIPAA 52

HIPAA Compliance Fraud Governance 52

Health Law Advisor

JUNE 12, 2023

Wade , the federal government, pursuant to President Biden’s Executive Order (the EO) took several steps to protect reproductive health privacy, some of which we previously discussed here. Introduction Following the Supreme Court decision in Dobbs v. Jackson Women’s Health Organization overturning Roe v.

HIPAA 98

HIPAA Health Insurance Governance 98

HIPAA Journal

SEPTEMBER 12, 2023

These technologies have enabled better care and greater patient access to health information, but the health data collected, stored, and transmitted via these technologies largely falls outside the protection of HIPAA. Any new regulations or updates to HIPAA will need to be enforced, and that is also likely to create challenges.

HIPAA 101

HIPAA Health Insurance Governance 101

HIT Consultant

APRIL 4, 2023

What You Should Know: 2023 started off with the hallmarks of a rebound year. Q1 Funding Soars, But 2023 May Struggle to Catch Up to 2019 Q1 2023 U.S. If funding for the next three quarters matches the average funding across the prior three quarters, 2023 is on pace for the lowest level of annual funding since 2019.

FDA 52

FDA Medicaid Medicaid COVID-19 52

HIPAA Journal

JULY 7, 2023

The security breach was detected on May 11, 2023, with unauthorized access occurring between May 10, 2023, and May 13, 2023. Notification letters started to be mailed to affected individuals on June 29, 2023. The investigation also confirmed that files had been exfiltrated from its network on March 7, 2023.

Licensing 95

Licensing HIPAA Health Insurance Governance 95

C&M Health Law

DECEMBER 19, 2022

Part 2 (“Part 2”) governing the confidentiality of substance use disorder (“SUD”) records as required under the Coronavirus Aid, Relief, and Economic Security (“CARES”) Act. Generally, HHS is attempting to align Part 2 requirements with the HIPAA (“Health Insurance Portability and Accountability Act”) Privacy Rule. Key Proposals.

HIPAA 52

HIPAA Governance Health Insurance Compliance 52

Healthcare Law Today

NOVEMBER 30, 2022

Proposed changes to the federal substance use disorder law will increase provider efficiency and alignment with the Health Insurance Portability and Accountability Act (HIPAA). Part 2 (Part 2), the regulation governing the confidentiality of substance use disorder patient records.

HIPAA 52

HIPAA Telemedicine Compliance Health Insurance 52

HIPAA Journal

MAY 24, 2023

Unauthorized customer account activity was detected by PillPack on April 3, 2023, and the investigation revealed customer accounts had been accessed by an unauthorized third party between April 2 and April 6, 2023. Up-to-date contact information then needed to be obtained, and notification letters started to be sent on April 19, 2023.

HIPAA 113

HIPAA Ransomware Licensing Governance 113

HIPAA Journal

SEPTEMBER 12, 2023

It took until August 18, 2023, to complete the review of the affected files. Email Account Breach Affects Patients of Bloom Health Centers On July 5, 2023, Bloom Health Centers in Timonium, MD, identified suspicious activity in its Microsoft 365 email environment.

Governance 88

Governance HIPAA Licensing Hospitals 88

AIHC

MARCH 12, 2024

Written by the AIHC Education Department This article provides an overview of how the media and government are reacting to the potential of artificial intelligence (AI) and potential threats associated with this advanced technology. A Government-Commissioned Report Released February 2024 The U.S. How does it work?

Ransomware 59

Ransomware Governance Compliance HIPAA 59

HIPAA Journal

AUGUST 3, 2023

The vulnerability is tracked as CVE-2023-35082, has a maximum CVSS v3.1 The vulnerability was identified by Stephen Fewer, a Rapid7 security researcher, and is linked to the recently disclosed maximum-severity zero-day vulnerability – CVE-2023-35078 – that was exploited in an attack on the Norwegian government and other entities.

Governance 52

Governance HIPAA 52

HIPAA Journal

JUNE 16, 2023

The latest vulnerability, CVE-2023-35708, is a critical bug that allows privilege escalation and potential unauthorized access to the environment. The May 31 and June 9 patches and remediation steps should be followed first, if they have not been already, then the June 15, 2023, patch can be applied to fix the third zero-day (CVE-2023-35708).

Ransomware 84

Ransomware Governance HIPAA 84

HIPAA Journal

APRIL 5, 2024

33% of the analyzed healthcare websites still use Meta pixel tracking code, despite the risk of lawsuits, data breaches, and fines for non-compliance with the HIPAA Rules. In December 2022, the HHS’ Office for Civil Rights issued guidance to HIPAA-regulated entities on the use of website tracking technologies. government.

HIPAA 68

HIPAA Compliance Hospitals Governance 68

Health Law Advisor

JULY 11, 2023

On June 16, 2023, Nevada enacted Senate Bill 370 (“ SB 370 ”), which imposes broad restrictions on the collection, use, and sale of consumer health data. This law is set to go into effect on March 31, 2024. Consumers must also be afforded a revocation right.

HIPAA 98

HIPAA Governance Health Insurance 98

Health Care Performance

FEBRUARY 28, 2023

On January 25, 2023, the Cybersecurity and Infrastructure Security Agency released a National Cyber Awareness System Alert , “Protecting Against Malicious Use of Remote Monitoring and Management Software” jointly with the National Security Agency (NSA), and Multi-State Information Sharing and Analysis Center (MS-ISAC).

Governance 52

Governance HIPAA 52

Healthcare It News

JULY 31, 2023

At the HIMSS 2023 Healthcare Cybersecurity Forum , scheduled for September 7 and 8 in Boston, Liederman will highlight his experiences implementing systems and procedures that foster a culture of privacy and security. Federal Office of Personnel Management's, to learn who can be compromised, Liederman said.

Ransomware 212

Ransomware Health Insurance HIPAA Governance 212

AIHC

MARCH 12, 2024

Written by the AIHC Education Department This article provides an overview of how the media and government are reacting to the potential of artificial intelligence (AI) and potential threats associated with this advanced technology. A Government-Commissioned Report Released February 2024 The U.S. How does it work?

Ransomware 52

Ransomware Governance Compliance HIPAA 52

HIPAA Journal

FEBRUARY 8, 2024

The incident was detected on November 9, 2023. Cybersecurity experts were engaged to assist with the investigation, which confirmed that unauthorized individuals accessed certain systems on or before September 27, 2023, and encrypted certain files. It is not clear from the notification letters when the intrusion occurred.

Ransomware 83

Ransomware Electronic Medical Records Licensing Health Insurance 83