Skip to main content

Tag: hhs

4 articles

A hospital corridor with a laptop screen and medical equipment in the background.

HIPAA Security Rule Overhaul Nears, But Will Regulators Meet May Deadline?

As the HHS Office for Civil Rights prepares to unveil a major overhaul of the 23-year-old HIPAA Security Rule, concerns are mounting about meeting the May deadline. Director Paula Stannard urges healthcare organizations to consider the steep cost of inaction, emphasizing that the benefits of proposed modifications far outweigh the burdens.

Analyst 207
Hospital administrative area with computer and printer, emphasizing email security.

Healthcare Breaches Decline, But Lax Email Security Persists

Alarmingly, nearly three-quarters of breached healthcare organizations had weak email defenses, with 74% either lacking a DMARC policy or having it set to monitor-only mode, leaving them vulnerable to attacks.

Analyst 207
Healthcare setting with laptop on desk, surrounded by medical equipment and files, emphasizing security and risk analysis.

HIPAA Fines Hit $1.7 Million for Risk Analysis Failures

The consequences of neglecting HIPAA risk analysis are steep: four entities recently paid a total of $1.7 million in fines for failing to conduct accurate, timely, and thorough assessments, exposing sensitive health information of nearly 427,000 individuals to hacking and ransomware threats.

Analyst 207
Person in a suit sits at desk with paperwork, laptop, and mobile devices, surrounded by subtle warnings of security concerns.

HHS Weighs HIPAA Security Rule Update Amid Compliance Cost Concerns

As the HHS Office for Civil Rights considers updating the HIPAA Security Rule, a pressing question remains: will the cost of compliance outweigh the risk of leaving protected health information vulnerable? The director bluntly puts it, the cost of inaction may outweigh compliance burdens.

Analyst 207