The UK Information Commissioner's Office has released a new security guide for small and midsized businesses. Simon Rice of the ICO discusses the guide and how to use it to avoid being breached.
Hacktivist attacks are on the rise. So how should organizations respond? ISF researcher Gregory Nowak offers unique advice about the role communications plays when hacktivist threats emerge.
Occupational fraud is quite possibly the largest form of fraud, says John Warren of the ACFE. So how can organizations spot the potential fraudsters and prevent their crimes? Warren shares insights.
The Department of Health and Human Services' Office for Civil Rights has published the official protocol for ongoing HIPAA compliance audits, offering a detailed breakdown of audit procedures.
A new GAO report criticizes HHS for its tardiness in issuing guidance for how to de-identify patient data. The report also calls on HHS to spell out plans for continuing its HIPAA compliance audit program beyond this year.
The Alaska Department of Health and Social Services has agreed to pay $1.7 million to settle a HIPAA case stemming from a relatively small breach. Federal authorities listed numerous security shortcomings at the department, which oversees Medicaid in the state.
Gartner's Tom Scholtz doesn't see a shortage of technically skilled IT security practitioners. But he perceives a dearth of infosec pros who truly understand how security links to an enterprise's business goals.
A cancer center recently discovered patient data was embedded in PowerPoint charts accessible via the Internet. What can organizations do to prevent this kind of data exposure?
The Markle Foundation has updated its guidance on health information exchange privacy and security issues to help HIE organizers and participants develop an environment of trust. Learn about the latest recommendations for policies and practices.
In this week's breach roundup, read about the latest incidents in healthcare and other sectors, including a PowerPoint breach affecting Memorial Sloan-Kettering Cancer Center patients.
A radiologist formerly affiliated with a Connecticut hospital has agreed to pay a fine as part of a settlement with the state's medical examining board for inappropriately accessing patient information to use in marketing his services. Find out the size of the penalty.
When it comes to fighting financial fraud, Peter Tapling of Authentify says banking institutions are chronically underestimating and under-utilizing one key resource: Their own customers.
As Information Security Media Group continues to grow, veteran healthcare IT journalist Marianne Kolbasuk McGee has joined the staff as managing editor of HealthcareInfoSecurity.
Owners of critical infrastructure might be shamed into providing the necessary security to safeguard their information assets. That's one takeaway of a compromise Senate bill proposed by Democrat Sheldon Whitehouse and Republican Jon Kyl.
With the increasing amount of data being collected by organizations, the role of the data scientist has emerged to aid in analysis. What's unique about the role and what job functions does it entail?
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing healthcareinfosecurity.com, you agree to our use of cookies.