You are here

Privacy & Security


The U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR) have launched new tools and initiatives to assist in elevating he opioid epidemic while also implementing the 21st Century Cures Act (Public Law 114-255).

According to a study released by Accenture and the American Medical Association (AMA), 83 percent of American physicians have experienced some form of a cybersecurity breach.

In a letter written to HHS Acting Secretary Eric D. Hagan, House of Representatives Committee on Energy and Commerce Chairman Greg Walde, R-Oregon, urged the agency to develop a sector-wide plan of action in deploying a “bill of materials” (BOM) for healthcare technology.

Privacy concerns are the main barrier in getting patients to share electronic medical records (EMRs) with healthcare providers, according to a study published in the Journal of Medical Internet Research.

Healthcare technology, while providing patients and professionals with advanced care solutions, has weaknesses in protecting patient information, according to the Top 10 Health Technology Hazards for 2018 report conducted by ECRI Institute.


Recent Headlines

Minn. provider settles HIPAA violations for $1.55M

A Minnesota provider will pay $1.55 million to settle HIPAA violation charges relating to the lack of a business associate agreement.

21 named to federal cybersecurity task force

The Department of Health and Human Services has named 21 people as members of its Health Care Industry Cybersecurity Task Force, a collaboration of leaders in the public and private sectors that will address cybersecurity issues in healthcare.

A rare happy ending in stolen laptop incident

Premier Healthcare reported a laptop containing protected health information had been stolen in January, potentially affecting 206,000 patients of the Bloomington, Ind., practice. In a rare positive turn of events, the laptop has been recovered.

Calif. provider settles class action suit for $7.5M in wake of data breach

St. Joseph Health has finalized a class-action lawsuit settlement for a 2012 data breach that affected 31,000 patients.

AHIMA's advocacy campaign focuses on patient identity

AHIMA’s 2016 advocacy initiative, MyHealthID, aims to educate consumers about the need for a voluntary patient safety identifier as a solution to patient matching.

Stolen laptop impacts 200,000 patients in Indiana

An Indiana provider is notifying patients of a stolen laptop that contained patient information.

Study: Despite growing concern for cybersecurity, few CISOs report to CEO

Even as cybersecurity dominates headlines both within healthcare and in other industries, most chief information security officers (CISOs) don't yet have a seat at the executive table, according to a study by ISACA and RSA Conference.

Cyberattack impacts 2.2 million oncology patients

Another healthcare cyberattack has come to light, this time affecting 2.2 million oncology patients.

Excellus breach costs totaled $17.3 million

Excellus Health Plan spent $17.3 million to respond to the September 2015 cyberattack that affected 10 million records.

Philly health system victim of 'spear phishing'

The FBI and IRS are investigating a spear phishing scam that put every employee of Philadelphia-based Main Line Health at risk for identity fraud.