HIPAA Journal

DECEMBER 31, 2022

HIPAA was enacted several years before social media networks such as Facebook and Instagram existed, so there are no specific HIPAA compliance rules for social media. There are many benefits to be gained from using social media if your organization is a HIPAA Covered Entity or Business Associate.

HIPAA 106

HIPAA Compliance Health Insurance Public Health 106

Verisys

NOVEMBER 8, 2023

CMS.gov The Administrative Simplification provisions of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) required the creation of a standard, unique health identifier for healthcare providers, which the NPI satisfies. Learn More About NPIs When Did NPI Numbers Begin? Why Are NPI Numbers Necessary?

Fraud 97

Fraud HIPAA Medicare Medicare 97

Compliancy Group

FEBRUARY 8, 2023

Faxage is one of the companies that offer the service and claims to be HIPAA compliant. What Makes a Software Tool HIPAA Compliant? When it comes to software, there are specific indications of the tool’s HIPAA compliance. Software HIPAA compliance really boils down to two things. What Are HIPAA Safeguards?

HIPAA 52

HIPAA Compliance 52

Health Populi

SEPTEMBER 20, 2020

More younger people would be interested in downloading personal health records compared with older people. Still, over 50% of consumers ages 56 to 74 would like to download their EHR data. This is particularly concerning when personal health data is downloaded to an app that may fall out of the protection of HIPAA.

COVID-19 81

COVID-19 Governance Doctors HIPAA 81

HIPAA Journal

DECEMBER 9, 2022

The Health Sector Cybersecurity Coordination Center (HC3) has issued a warning to the healthcare and public health (HPH) sector about Royal ransomware attacks. The group uses malvertising – malicious adverts – to direct traffic to a site where a malicious file is downloaded, including Google Ads.

Ransomware 109

Ransomware Public Health HIPAA 109

HIPAA Journal

FEBRUARY 15, 2023

FoneLaunch is a.NET loader that loads encoded payloads in the memory and SnowCone is a downloader that retrieves and executes payloads that are used in the next stage of the attack, including the IcedID banking Trojan and malware dropper. These can include business-related documents such as contract templates and service-level agreements.

HIPAA 93

HIPAA 93

HIPAA Journal

MAY 18, 2023

A joint cybersecurity alert has been issued by the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and Australian Cyber Security Centre (ACSC) about the BianLian ransomware and data extortion group.

Ransomware 89

Ransomware Public Health HIPAA 89

HIPAA Journal

FEBRUARY 27, 2023

The healthcare and public health (HPH) sector has been warned about cyberattacks involving MedusaLocker ransomware – one of the lesser-known ransomware variants used in cyberattacks on the sector. Since 2019, the majority of attacks have used phishing and spam emails with malicious attachments as the initial access vector.

Ransomware 99

Ransomware Public Health HIPAA 99

Health Populi

SEPTEMBER 21, 2020

More younger people would be interested in downloading personal health records compared with older people. Still, over 50% of consumers ages 56 to 74 would like to download their EHR data. This is particularly concerning when personal health data is downloaded to an app that may fall out of the protection of HIPAA.

COVID-19 68

COVID-19 Governance Public Health Doctors 68

Health Law Advisor

DECEMBER 5, 2022

The bulletin advises that “[r]egulated entities are not permitted to use tracking technologies in a manner that would result in impermissible disclosures of Protected Health Information (“PHI”) to tracking technology vendors or any other violations of the HIPAA Rules.” According to HHS, unauthenticated webpages (i.e.,

HIPAA 98

HIPAA Doctors Health Insurance Compliance 98

HIPAA Journal

NOVEMBER 10, 2022

The threat actor claims to download data before encrypting files, although no data leak site has been associated with the group. The post HC3 Sounds Alarm About Venus Ransomware appeared first on HIPAA Journal. Antivirus software should also be installed on all endpoints.

Ransomware 104

Ransomware HIPAA 104

HIPAA Journal

NOVEMBER 9, 2022

The federal government has issued a warning to the healthcare sector about the threat of cyberattacks by Iranian threat actors. The emails sought input for an article about Iraq’s position in the world. The post Healthcare Sector Warned About Cyberattacks by Iranian State-Sponsored Threat Actors appeared first on HIPAA Journal.

HIPAA 121

HIPAA Doctors Hospitals Governance 121

Healthcare IT Today

OCTOBER 20, 2023

The Health Insurance Portability and Accountability Act of 1996 ( HIPAA ) is a federal law that safeguards sensitive patient health information (PHI) from being disclosed. Up to now, HIPAA-compliant data security and generative AI haven’t gone hand-in-hand as AI is trained on large datasets centrally and often by third parties.

HIPAA 83

HIPAA Informed Consent Nurses Compliance 83

Total HIPAA

JUNE 28, 2023

You may have been wondering if this means you’ll have to do something about “HIPAA”. This means you need to be HIPAA compliant as an employer. HIPAA compliance means having a plan. Here are three common pitfalls to look out for in your HIPAA Compliance Plan: 1.

HIPAA 52

HIPAA Compliance Officers Compliance Ransomware 52

HIPAA Journal

JUNE 8, 2022

The HHS’ Health Sector Cybersecurity Coordination Center (HC3) has issued a warning to the healthcare sector about the threat from Emotet malware. Emotet malware is primarily delivered via email, most commonly via malicious Office attachments or hyperlinks to compromised websites where the payload is downloaded.

Ransomware 105

Ransomware HIPAA Governance 105

Compliancy Group

FEBRUARY 21, 2023

Is it a HIPAA violation to email medical records? Are You Using a HIPAA Compliant Email Provider? Not all email service providers are HIPAA compliant. Learn more about HIPAA compliant email encryption. Make Sure You’re HIPAA Compliant Using email in the right way is just one piece of HIPAA compliance.

HIPAA 52

HIPAA Compliance 52

Compliancy Group

MAY 5, 2023

As healthcare professionals continue to work from home, many are facing the challenge of ensuring that they remain HIPAA compliant in a remote environment. HIPAA (Health Insurance Portability and Accountability Act) is a federal law that requires healthcare providers to secure protected health information (PHI) and maintain its privacy.

HIPAA 52

HIPAA Compliance Health Insurance Doctors 52

HIPAA Journal

APRIL 19, 2023

These tools disclosed certain information about app users to Google, especially when users were logged into their Google accounts at the same time that they used the InPen App. As a result, their identities and information about online activities were shared with Google.

HIPAA 89

HIPAA Health Insurance 89

HIPAA Journal

DECEMBER 2, 2022

The HHS’ Office for Civil Rights has issued a bulletin confirming that the use of third-party tracking technologies on websites, web applications, and mobile apps without a business associate agreement (BAA) is a HIPAA violation if the tracking technology collects and transmits individually identifiable health information.

HIPAA 104

HIPAA Compliance Hospitals Fraud 104

Compliancy Group

AUGUST 7, 2023

Department of Health and Human Services’ Office for Civil Rights (OCR) and the Federal Trade Commission (FTC) are warning hospitals and telehealth providers about security risks and privacy risks posed by online tracking technologies. Companies that HIPAA does not regulate must also use tracking technologies appropriately. Please Wait.

HIPAA 52

HIPAA Compliance Hospitals 52

MedTrainer

FEBRUARY 19, 2024

The Health Insurance Portability and Accountability Act (HIPAA) has been a cornerstone healthcare regulation since 1996. Twenty-eight years later, the importance of HIPAA compliance in healthcare has not waned. What is HIPAA? OCR inspectors will assess your organization’s internal processes for handling patient data.

HIPAA 52

HIPAA Compliance Health Insurance Governance 52

HIPAA Journal

OCTOBER 10, 2022

Threat actors leverage software tools that have already been installed to avoid having to download files via the Internet, malicious activities can be hidden within the logs along site legitimate use of these tools, and these tools are used to conduct malicious activities in the memory to evade security solutions.

Ransomware 92

Ransomware Public Health HIPAA 92

HIPAA Journal

AUGUST 9, 2022

The Health Sector Cybersecurity Coordination Center (HC3) has published a security advisory warning the healthcare and public health sector about the risks associated with Internet of Things (IoT) devices along with recommendations for improving the security of IoT devices. How to Minimize Risk from IoT Devices in Healthcare.

Public Health 97

Public Health HIPAA Doctors 97

Total HIPAA

JULY 12, 2021

Many HIPAA compliant organizations need to send and receive electronic Protected Health Information (ePHI) on a regular basis. HIPAA requires you to secure information at rest, in transit, and in storage. HIPAA compliant efax services are an ideal replacement for traditional fax machines many businesses are phasing out.

HIPAA 52

HIPAA Compliance COVID-19 52

Compliancy Group

APRIL 25, 2022

Even when you do the best you can to comply with HIPAA regulations, violations and breaches may occur. What happens after a HIPAA complaint is filed? Common Violation Examples – What Happens After a HIPAA Complaint is Filed? Common Violation Examples – What Happens After a HIPAA Complaint is Filed? Learn More! ×

HIPAA 52

HIPAA Compliance Ransomware 52

Compliancy Group

DECEMBER 7, 2022

Healthcare providers frequently use online tracking technologies – scripts or codes on a website or mobile app used to gather information about users as the users interact with the site or app. The topic of appropriate use of online tracking technology and HIPAA is discussed in greater detail below. healthcare operations).

HIPAA 52

HIPAA Compliance Doctors 52

MedTrainer

AUGUST 16, 2023

Download this guide to calculate the amount of money you’re spending on your “free” compliance training program. Adhering to regulatory requirements — such as HIPAA, CMS, and OSHA standards — is critical for healthcare organizations and providers, and it’s a standalone reason for investing in a compliance LMS. Your time is worth more.

Compliance 52

Compliance Regulatory Compliance HIPAA Compliance Officers 52

HIPAA Journal

OCTOBER 7, 2022

On August 5, 2022, Anthem discovered that an unauthorized individual had gained access to a database and downloaded files containing plan members’ protected health information, including names, addresses, dates of birth, phone numbers, email addresses, Medicare ID numbers, and Medicaid ID numbers.

HIPAA 95

HIPAA Health Insurance Medicaid Medicaid 95

MedTrainer

MAY 16, 2024

Download the Ultimate List of Training Requirements for Ambulatory Surgery Centers to see a full list of federal and accreditation training requirements for ASC staff broken down by role, with the applicable standard, CMS violation category, and frequency. Learn more about MedTrainer.

Compliance 52

Compliance HIPAA Health Insurance Medicaid 52

HIPAA Journal

AUGUST 12, 2022

The emails have an Evernote-themed lure to trick recipients into downloading a Trojan file that generates a login prompt to steal credentials. The Health Information Cybersecurity Coordination Center (HC3) has recently issued an alert about the campaign which has targeted several healthcare providers in the United States. Source: HC3.

Ransomware 96

Ransomware HIPAA 96

Total HIPAA

MARCH 1, 2021

Jason Karn, Total HIPAA’s Chief Compliance Officer, recently talked with David Smith, a nationally recognized healthcare benefits consultant and regulatory expert, to discuss HIPAA regulation during the COVID-19 pandemic. You can listen to this episode of our podcast HIPAA Talk here or on your mobile device via Apple Podcasts.

COVID-19 52

COVID-19 HIPAA Compliance Compliance Officers 52

HIPAA Journal

SEPTEMBER 27, 2022

A warning has been issued to the healthcare and public health (HPH) sector about an ongoing Monkeypox phishing campaign targeting U.S. Monkeypox and COVID-19-related phishing campaigns have a high success rate as there is considerable interest in the outbreak and concern about infections.

COVID-19 100

COVID-19 Public Health HIPAA 100

Total HIPAA

NOVEMBER 29, 2021

Firstly, make sure you have audited a Business Associate or Subcontractor’s HIPAA compliance program before signing a Business Associate Agreement (BAA) with them, and do so again each year before you resign the agreement. And what do you need to do to properly configure your systems so your data is secure and you’re HIPAA compliant?

HIPAA 52

HIPAA Compliance Governance 52

Total HIPAA

JUNE 2, 2020

HIPAA compliant file sharing apps are necessary if your company is dealing with personal health data. Most importantly, all the products reviewed are HIPAA compliant file sharing applications. HIPAA compliant file sharing apps that we reviewed are following: Accellion Box Dropbox Egnyte FTP Today G Suite OneDrive ShareFile Syncplicity.

HIPAA 52

HIPAA Compliance Licensing Regulatory Compliance 52

MedTrainer

JANUARY 10, 2024

Listen to this podcast where my colleague, Hira Rashid, talks about anticipating policy changes. Download a toolkit with everything you need to know about USP <800> compliance. Download Now All staff with the potential for exposure to bloodborne pathogens must be provided training and then an annual refresher course.

Compliance 94

Compliance Fraud HIPAA Compliance Officers 94

AIHC

APRIL 10, 2024

HITECH is a critical aspect of the Health Insurance Portability & Accountability Act (HIPAA). Since 2009, HITECH has given “teeth” to HIPAA law. What’s the difference between HIPAA and HITECH? HIPAA guarantees patients access to their paper medical records. This act was signed into law by President Obama back in 2009.

Compliance 99

Compliance US Department of Health and Human Services HIPAA Electronic Medical Records 99

HIPAA Journal

JULY 7, 2023

Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), Multi-State Information Sharing and Analysis Center (MS-ISAC), and the Canadian Centre for Cyber Security (CCCS) warning about a TrueBot malware campaign targeting organizations in the United States and Canada.

Ransomware 97

Ransomware HIPAA 97