Medical identity theft, an often underestimated crime, is one of the fastest growing offenses in America. It has claimed more than 1.8 million domestic victims so far this year - a 19 percent increase from 2012 - and is expected to get worse before it gets better.
Covered entities are finding it difficult to comply with a HIPAA Omnibus requirement to accommodate patients who pay cash and don't want their treatment information disclosed to insurers, says Jeff Cobb, CISO at Capella Healthcare.
New payment card security standards issued by the PCI Council include a number of improvements, plus some glaring omissions, such as requirements for mobile, security experts say. What are their chief concerns?
Organizations must guard against making three common mistakes when conducting an investigation of a data breach or fraud incident, says attorney Kim Peretti, a former Department of Justice cybercrime prosecutor.
Federal advisers are hammering out recommendations, including potential technology pilot projects, for how to best implement a HITECH Act mandate to update requirements for an accounting of disclosures of protected health information.
The National Institute of Standards and Technology continues to collaborate with the National Security Agency on its IT security guidance even as it investigates whether the spy agency meddled with one of its special publications.