A $400,000 federal penalty stemming from the investigation of a breach at a clinic owned by Idaho State University is the latest example of how even relatively small security incidents can trigger hefty sanctions.
The latest statistics on major healthcare data breaches for 2013 are encouraging. But could we see a surge in breach reports after organizations begin using updated federal guidance about how to assess whether to report a breach?
A conference hosted by the HHS Office for Civil Rights and the National Institute of Standards and Technology will provide insights on HIPAA Omnibus Rule compliance as well as other hot health data security topics.
Encryption is an important breach prevention tool. But to make the right decisions about how to apply encryption, healthcare organizations should take four specific steps, says security expert Feisal Nanji.
With over 870,000 medical records exposed in data breaches in just the first quarter of 2013, medical data breaches have become a source of chronic pain for healthcare organizations. Adding to this complexity is the HIPAA Omnibus Final Rule.
Looking at a multitude of studies and research, it's clear that data...
How Organizations Can Respond Faster to Today's New Breed of Cyber-Attacks
Under the shadow of advanced security threats, only 20% of organizations rate their incident response programs as "very effective." Their biggest gaps: Being able to detect and contain malware, which can also be the precursor to advanced...
A recent $1 million cyberheist at a county hospital illustrates why healthcare organizations must pay attention to securing financial as well as clinical data - and educate staff about how to recognize phishing e-mails.
The Ponemon Institute, sponsored by Experian® Data Breach Resolution, conducted the "Securing Outsourced Consumer Data." The study surveyed over 700 individuals in organizations that transfer or share consumer data with vendors.
Download the "Securing Outsourced Consumer Data" and learn:
The frequency of data...
The cost of a data breach or privacy violation goes far beyond compromised records to include hard-dollar expenditures for breach notification, credit monitoring, regulatory fines and legal fees. Not to mention the immeasurable cost of reputation loss.
To avoid these losses, security leaders are increasingly...
Farzad Mostashari, M.D., the national coordinator for health information technology, sees the exchange of health information as a way to improve care quality. But what's his vision for achieving truly secure data exchange?
In the aftermath of a massive health data breach last year and a smaller incident this year, the state of Utah is taking a number of steps, including creating a data security office within the health department.
As major health data breaches continue to grab headlines, and as federal regulators step up enforcement of privacy and security requirements under the new HIPAA Omnibus Rule, healthcare organizations face the challenge of ensuring patient information is adequately protected. What are their key action items? We...