Tag Archives | PHI

When a Data Breach Isn’t a Data Breach

Earlier this summer The Surgeons of Lake County experienced a data breach that might have scary tellings for the future.  Hackers breached their EHR system and instead of download the “payload” they encrypted the data in place, holding the key for ransom.  This data breach doesn’t look like the normal data breaches we have seen. […]

Read full story Comments { 0 }

Many Healthcare Organizations Still Without Data Breach Response Plans

Recently during an AHA webinar on healthcare data breaches the moderators polled to see how many attendees had Incident Response Plans, which are required under the HIPAA security rule, and the results were alarming. 44% didn’t have one, and 22% had one but never tested it, which begs the question, what are they waiting for? […]

Read full story Comments { 0 }

The Risks from Non-Sensitive Information Released in Data Breaches

By now, the story of  Wired’s Mat Honan epic hack is all over the web.  Hackers were able to use publicly available information about Mat to socially engineer both Amazon and Apple’s security system to gain access to his whole digital life.   Slashing and burning as they went, the hackers destroyed Mat’s digital life on […]

Read full story Comments { 0 }

Who Controls Your Health Data? And Why You Should Care!

A few weeks ago Doug Pollack at ID Experts wrote an article on “Who Owns Patient Data in Electronic Health Records?”  that discussed ownership and control of EHR.  It was shared on the HIMSS LinkedIn group and gather over 150 comments.  Everyone had an option and it was very apparent that it was still a […]

Read full story Comments { 0 }

When the money runs out, does our Healthcare privacy too?

What happens to HIEs when the government subsidies run out.  How will they be funded?  Will it be at the detriment of our PHI/EHR privacy?  Will it lead to more Healthcare data breaches? “It is no secret that the biggest challenge facing HIEs is the lack of a sustainable business model once the gov’t subsidies […]

Read full story Comments { 0 }

New software tool for healthcare data breach risk assessments

ID Experts today announced RADAR (HITECH Data Breach Risk Assessment, Documentation and Reporting), the industry’s first expert software tool to measure a data breach incident’s risk index (IRI) by combining the severity of the episode and the sensitivity of the exposed data to quantify the incident’s overall harm threshold.  Designed for healthcare providers, HIPAA covered […]

Read full story Comments { 0 }

Are you ready for a healthcare data breach?

This article is reprinted from Healthcare IT News with the author’s permission.   The handling of data breach incidents has become a way of life for healthcare providers and with other HIPAA covered entities. With the passage of the HITECH Act last year, there are now substantial penalties that can be levied, up to $1.5 […]

Read full story Comments { 0 }

Financial Management of Cyber Risk

This past week, the Internet Security Alliance (ISA) and the American National Standards Institute (ANSI) released a groundbreaking document that is aimed at assisting the Chief Financial Officer of major corporations and organizations in managing the financial risks inherent in protecting an organization from cybercrime. Titled “The Financial Management of Cyber Risk: An Implementation Framework […]

Read full story Comments { 0 }

Medical Records Safe From Data Breach?

Dr. Deborah Peel, founder of Patient Privacy Rights, recently published an article in the Wall Street Journal. In it, she describes how the promise of electronic medical records may be impeded because of patients’ fears that their personal health information will be shared with others outside of their healthcare provider. Her perspective is one that […]

Read full story Comments { 0 }

New healthcare data breach offering

ID Experts today announced a new and unique solution for data breaches that involve protected health information (PHI) and associated risks of medical identity theft. With the passage of the HITECH Act last year and the clarifying Rules published by Health and Human Services (HHS), healthcare organizations now face greater scrutiny and higher risks when […]

Read full story Comments { 0 }