Protecting Information from Cybersecurity Threats

Share This Post

Banner Health had to pay a $1.25 million settlement due to a cybersecurity breach that resulted from a hacking incident. As a result, almost 3 million people had their information exposed. This was a violation of HIPAA requirements based on the security rule. The purpose of the security rule is to protect consumers’ health information from cybersecurity threats like this one. The violations by Banner Health consist of a lack of analysis determining risks, failure to authenticate to safeguard this information, failure to monitor, and a lack of security measures.

Cybersecurity Threats

Hackers continue to threaten consumer information. To ensure the security of sensitive information, healthcare providers should follow all the needed steps to ensure its safety. In this case, Banner Health did not adequately protect against this attack. It is the responsibility of the organizations to protect the sensitive information that they collect even in the case of an attack.

Corrective Actions to Combat Cybersecurity Threats

In addition to the settlement, Banner Health is taking corrective measures in order to ensure that something like this does not happen again. Risk analysis makes clear the vulnerabilities to the system within the organization. A plan that the organization must follow in order to address risks once they have been identified should be formulated. These actions should be reviewed regularly to ensure that these processes are up to date. Additionally, if anyone within the organization fails to comply with these policies, they must be reported within 30 days. These measures lower the risk of cybersecurity threats.

Get Certified

American Medical Compliance (AMC) is a leader in the industry for compliance, billing, and HR solutions. Learn more about improving your organization’s cybersecurity practices by taking our HIPAA Regulations and Cybersecurity Training for Healthcare Personnel course today. Visit https://americanmedicalcompliance.com/ for more information.

Reference

US Department of Health and Human Services (2023, February 2). HHS Office for Civil Rights Settles HIPAA Investigation with Arizona Hospital System Following Cybersecurity Hacking. Retrieved from: https://www.hhs.gov/about/news/2023/02/02/hhs-office-for-civil-rights-settles-hipaa-investigation-with-arizona-hospital-system.html

More To Explore

EEOC
Course

EEOC Discrimination Training

The following EEOC Discrimination Training is designed to educate healthcare staff on the various types of employment discrimination. Giving your staff the information needed to

retaliation
Course

EPA Retaliation Training

The following EPA Retaliation Training is designed to educate healthcare staff on federal policy regarding retaliation and discrimination complaints. Understanding federal policies on retaliation and

Want to Improve your Bottom Line, Patient Satisfaction and Retention?

Reach out and See How We Can Help!

Connect With Us

© 2024American Medical Compliance | All Rights Reserved