OCR Cybersecurity Training Online
, , , ,

OCR Training Video

Are You Tired of Hearing It? Just SHUT UP ALREADY - I know some of you are thinking that. We've been going on and on about the importance of cybersecurity training, and I know more than a few of you are getting tired of it. So what do we do…
Cybersecurity Training Online
, , , , ,

When cybersecurity training isn’t enough – what next?

Beyond Training - You Can't Stop There. We've talked a lot about training lately because it is the single best tool you have to keep your network secure. However, it's not bulletproof. Two weeks ago Microsoft issued patches for over 85 security…
Cybersecurity in healthcare
, , , , ,

Three ways to improve your cybersecurity

Three Steps You MUST Take Now. Cybersecurity professionals are sounding the alarm in agreement that we are about to experience another uptick in cybersecurity attacks. They cite numerous reasons for this coming storm. The most significant concern…
, , , ,

Week 2 of Cyber awareness month!

At a recent discussion in Texas on cybersecurity in healthcare, technology experts were in agreement that cyber threats were increasing and getting more sophisticated. When we consider the options, we can boil them down to two - tighter network lockdowns, and more training.
, , , ,

Emergency Preparedness – Are you ready

Are You Prepared? Here comes Ian, expecting to hit Florida soon. Use this as a wake-up call to review your own emergency preparedness. Many of you have recently experienced natural disasters. Be it hurricanes, floods, earthquakes, or fires,…
Old age and cybersecurity don't mix
, , , ,

Cybersecurity and old age – they don’t mix

Old age and cybersecurity We all know many things don't work as well as they(we) age. It's a fact of life most of us face. While age impacts us personally, the systems around us are also impacted by age. A recent study by cybersecurity firm…
HP missing updates
, , , ,

Are you vulnerability to these attacks?

The Importance of Patching Most of us know about patch Tuesday - the second Tuesday of every month is when Microsoft releases its software patches. Most IT companies either manually update client systems or have them set to run automatically.…
EHR failing HIPAA compliance
, , , ,

Your EHR is failing you for HIPAA compliance

EHR & HIPAA A recent report published by Cynergistek presented data showing less than half of the nation's healthcare institutions comply with the National Institute of Standards and Technologies (NIST) Cybersecurity Framework (CSF).…
Social media app infringment
, , , ,

Your apps are your security enemy. Here’s what we’ve recently discovered.

EULA, YOU, and HIPAA What do End User License Agreements and HIPAA have to do with each other? According to recent discoveries, a heck of a lot. It turns out apps like Meta's Facebook and Messenger, Instagram, Tik Tok, and others, are mining…
HIPAA violation fines
, , , ,

Will we see reduced HIPAA fines

Are reduced HIPAA fines on the way? In 2019 we wrote an OCR letter that discussed the possible reduction of HIPAA fines. We were all for it - read about it here - OCR Caps HIPAA FInes. It looks like OCR is ready to change the annual fee structure.…
NIST Cybersecurity
, , , ,

New HIPAA guidance is on the way, here’s the good and the bad.

New HIPAA Guidance Years ago, at a HIPAA conference in DC hosted by NIST, they announced an update to 800-66 would be coming. Almost 10 years later, we now have a draft copy of this paper - 800-66r1. Why is this significant? 800-66 was the…
, , , , ,

OCR announces 11 more HIPAA ROA violations

Eleven more fines, are you next? OCR recently announced that 11 more entities were fined for failing to provide timely access to patient records following a patient complaint. This list included mental health practitioners, dentists, and more.…
, , , ,

HIPAA and your password policy – are you compliant?

HIPAA and your password. Thanks to NIST, who in 2017 changed their recommended password policy in publication 800-63B, the change/do not change debate has been ongoing. If you aren't familiar with the publication, here's a short news video…
MCG databreach healthcare
, , , ,

The lawsuits are flowing in the MCG Health breach. Here’s why it’s bad for you.

Vendor Risk MCG Health is a health information services company providing clinical guidelines to hospitals and other care facilities nationwide. They recently reported a breach that had occurred back in 2020, and already lawsuits from their…
, , , ,

Facebook is collecting your health information. Should you care?

Facebook is bad for your health! A report published this week by the website Newsbusters revealed some disturbing information about Facebook. The news organization ran a battery of tests against 100 US hospitals and discovered a third of them…
HIPAA law changes
, , , ,

Get ready for major HIPAA changes

HIPAA Changes Ahead In January of 2021, we reported on an amendment to the HITECH act by congress that intended to advance HIPAA compliance and enforcement. The idea was to incentivize Covered Entities to adopt best practices for cybersecurity…