Organizations involved in exchanging electronic health records should provide patients with clear, brief notices about their data sharing policies, a privacy and security tiger team advising federal regulators says.
In light of a survey confirming that medical students aren't getting enough training on how to comply with Medicare and Medicaid laws aimed at preventing fraud and abuse, federal authorities will prepare educational materials on the subject.
Healthcare organizations need to improve the methods they use to objectively assess the severity of a security incident and whether it should be reported to comply with the HITECH Act's breach notification rule, one privacy officer says.
Two weeks after authorities on two continents arrested cyber criminals linked to the Zeus malware, Microsoft has added the infamous Trojan's signature to one of its best removal tools in an effort to hunt down infected machines.
Hospitals and clinics need to take a methodical approach to privacy and security as they prepare to qualify for electronic health records incentive payments from Medicare and Medicaid under the HITECH Act, security adviser Phyllis Patrick says.