Cyber Security Awareness
Crisis Communication Strategies After a Healthcare Data Breach
When a major healthcare cybersecurity crisis happens in your practice, how you respond can go a long way toward saving or sinking your reputation among your patients and the public. A data breach, in particular, is a difficult crisis to manage since it involves technical (and often legal) aspects that smaller practices may have little formal knowledge of. These events can be so complex and multi-layered that even large global enterprises have difficulty managing them.
Continue Reading
HIPAA, HITECH, and Confidentiality Risks When Texting in Healthcare
Texting protected health information (PHI) without proper safety and encryption processes in place could result in HIPAA/HITECH violations, and noncompliance with CMS and accreditation requirements for secure text messaging, and violation of state medical information confidentiality laws. Because PHI goes where the phone goes, ensuring the privacy and security of PHI sent by text messaging can be challenging.
Continue ReadingSecurity Assessment Tool
The Office of the National Coordinator for Health Information Technology (ONC)
Learn MoreThe Devastating Impacts of Ransomware Attacks in Healthcare
In the digital practice — where sensitive business and patient information is stored electronically — ransomware is one of the most devastating forms of malware impacting healthcare cybersecurity. It works by encrypting or blocking access to sensitive files and demanding payment to restore access.1 The loss to a healthcare practice — and its patients if medical records access is blocked — could be devastating. If the attack is successful, it is nearly impossible to recover the data without paying the ransom.
Continue Reading