A new incident response publication coming from the National Institute of Standards and Technology will include guidance on how to form circles of trust - networks of IT security experts spanning multiple organizations, says NIST's Lee Badger.
Insurer WellPoint has agreed to pay the Department of Health and Human Services $1.7 million to settle a HIPAA case stemming from a website data breach that may have exposed information on more than 612,000 individuals.
After a federal court dismissed a class action lawsuit filed against Adventist Health System in the aftermath of a breach affecting 763,000 patients, another lawsuit was immediately filed in a state court. Find out the details.
Our analysis of U.S. government labor statistics shows a sizable increase in the IT security workforce. But the way the occupation is defined may have as much to do with the increase as the number of jobs themselves.
Distributed-denial-of-service attacks pose a persistent, genuine threat to all sectors. That's why we've created the DDoS Resource Center to fill the information gaps.
With data breaches becoming nearly inevitable, many organizations are looking now for new ways to reduce the costs associated with them. Here are five practical tips for how to contain breach costs.
The agency that administers Indiana's Medicaid program is notifying almost 188,000 clients of a possible breach of their data tied to an apparent programming error by a business associate.
Some organizations may need to reconsider how they assess whether incidents are reportable breaches under the HIPAA Omnibus Rule, explains privacy expert Kate Borten.
A new report shows that large data breaches in all sectors last year in California mirror a problem that keeps happening at lots of healthcare entities across the country. Find out what that problem is.
The best argument for enactment of a federal data breach protection law to replace 46 state statutes is that physical location is not relevant in a society that relies on mobile technologies, says public policy advocate David Valdez.
What's it take to track down and modify hundreds of business associate contracts to ensure HIPAA Omnibus compliance? Shallie Bryant of CaroMont Health shares insight and tips from her experience.
Reports continue to show that an overwhelming percentage of applications have serious vulnerabilities. The important takeaway here is that application security has not improved in the last 10 years.
Whether or not Congress enacts cyberthreat intelligence sharing legislation, the IT security community is moving forward with its own information sharing initiatives, MS-ISAC Chairman William Pelgrin says.
The Office of the National Coordinator for Health IT, a unit of the Department of Health and Human Services, has offered Congress a glimpse at its security and privacy priorities for next year. Let us know what you think of the to-do list.
Federal regulators are proposing that the state health insurance exchanges created under healthcare reform must report data breaches within an hour. Is that a reasonable requirement?
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing healthcareinfosecurity.com, you agree to our use of cookies.