In this week's breach roundup, Walgreens plans to appeal a $1.4 million penalty a jury issued after a pharmacist inappropriately reviewed and shared a woman's prescription history.
Two recent incidents at Oregon Health & Science University involved inappropriate storage of unencrypted patient information in the cloud. Experts weigh in on the fogginess of HIPAA Omnibus regarding cloud providers.
After organizations update their policies and procedures to comply with the new breach notification requirements of HIPAA Omnibus, they must thoroughly test their response plans, attorney Ellen Giblin stresses.
The Sept. 23 enforcement deadline for the HIPAA Omnibus Rule is less than two months away. Privacy and security experts offer tips for what needs to get done now in order to meet compliance milestones.
Bipartisanship, a rare commodity in Congress, surfaced in the Senate Commerce Committee, which approved by a voice vote legislation that codifies President Obama's cybersecurity framework.
NSA Deputy Director John Inglis tells a Senate panel that the agency neither fired nor admonished any personnel in connection with the leak by Edward Snowden of details about top-secret intelligence-gathering programs.
A judge finds WikiLeaks leaker Bradley Manning not guilty of aiding the enemy but convicts him on other charges. How will the mixed verdict sway NSA whistleblower Edward Snowden's decision on whether to remain on the lam?
Mobile clinics using telemedicine to deliver care to children face the same security challenges as those facing other healthcare delivery settings, says Jeb Weisman, CIO of the Children's Health Fund.
White hat hacker Barnaby Jack, who passed away July 25, will be remembered for his demonstrations that dramatically spotlighted the vulnerabilities of ATMs and medical devices.
What are the top challenges and concerns when it comes to meeting the Sept. 23 deadline for complying with the HIPAA Omnibus Rule? Privacy and security attorney Kirk Nahra offers an analysis.
The team developing the cybersecurity framework that President Obama ordered is considering incorporating cyber-insurance as a component of the plan, says NIST Director Patrick Gallagher.
A draft of a healthcare-specific version of the upcoming NIST Cybersecurity Framework will be unveiled this fall. Find out why some CISOs say it could help them address specific data security concerns.
The National Institute of Standards and Technology has published new guidance on malware incident prevention and handling for desktops and laptops as well as enterprise patch management technologies.
How were four Russians and a Ukrainian allegedly able to steal more than 160 million payment card numbers from corporate networks over seven years? An indictment announced by U.S. Attorney Paul J. Fishman provides details.
By being transparent, federal government agencies can minimize public concern that government monitors individual speech and action on social media, new guidance from the U.S. federal CIO Council advises.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing healthcareinfosecurity.com, you agree to our use of cookies.
