Free HIPAA Training
Free HIPAA training can be a steppingstone to a better understanding of HIPAA rules and regulations and improved patient outcomes in healthcare environments. For these reasons, free HIPAA training can be beneficial for individuals wishing to learn more about HIPAA. The HIPAA Journal presents on this resource page comprehesive free HIPAA training that provides a thorough introduction to HIPAA. Table of Contents Why Sufficient Understanding of HIPAA is Important How Best to Support HIPAA Compliance Training HIPAA Overview HIPAA Definitions The HITECH Act The Main HIPAA Regulatory Rules HIPAA Omnibus Final Rule HIPAA Privacy Rule Basics HIPAA Security Rule Basics HIPAA Patient Rights HIPAA Disclosure Rules HIPAA Violation Consequences Preventing HIPAA Violations Being a HIPAA Compliant Employee Voluntary Foundation Courses for Individuals Free HIPAA Training FAQs HIPAA Training for Individuals Our HIPAA Certification training gives learners clear, practical guidance on what to do and why in real-world HIPAA scenarios. View Training The Gold Standard in HIPAA Training by The...
Cybersecurity Incidents Reported by Multiple Dental Practices
Data breaches have been announced by several dental practices: Bayside Dental (TX/WA), Aldrich Pediatric Dentistry (IN), Stafford Oral Surgery (VA), Garrisonville Dental (VA), and Drs. Abdelbaky, Boes, Cameron & Associates of Wake Forest and Cary Park (NC). Bayside Dental Bayside Dental, a dental practice with locations in Rowlett, Texas, and Anacortes, Washington, has experienced a cybersecurity incident. Unauthorized network access was identified on or around January 5, 2026, and the forensic investigation confirmed on March 13, 2026, that there had been unauthorized access to files containing patient data on January 5, 2026. Data potentially viewed or obtained in the incident included full names, dates of birth, Social Security numbers, medical treatment information, medical diagnostic information, prescription information, patient numbers, health insurance information, health insurance plan beneficiaries, and dates of service. Bayside Dental determined that the protected health information of up to 10,216 patients was potentially compromised in the incident. Bayside Dental...
Check Point VPN and Google Chrome Vulnerabilities Under Active Exploitation
Patches have been issued to fix a critical vulnerability affecting Check Point Mobile Access, SSL VPN, Remote Access VPN, and Spark Firewalls, and a high-severity vulnerability in Google Chrome, both of which are being actively exploited in the wild. Check Point Remote Access VPN Vulnerability On June 8, 2026, the cybersecurity firm Check Point issued a security advisory about a critical authentication bypass vulnerability tracked as CVE-2026-50751 (CVSS 9.3), which has been actively exploited in zero-day attacks since May 7, 2026. Exploitation of the vulnerability accelerated over the weekend, with a few dozen organizations falling victim to attacks. In one attack, Check Point associated the post-exploit activity with a Qilin ransomware affiliate that has previously targeted vulnerabilities in other VPNs. The vulnerability affects Check Point Mobile Access, SSL VPN, Remote Access VPN, and Spark Firewalls; however, only if deployments are configured to use the deprecated IKEv1 key exchange protocol. In vulnerable deployments, unauthenticated remote attackers can exploit a logic...
Senator Seeks Answers from NYC Health & Hospitals About 1.8M Record Breach
The Senate Health, Education, Labor, and Pensions (HELP) Committee Chair Senator Bill Cassidy, M.D. (R-LA), is seeking answers from NYC Health + Hospitals about the steps that have been taken since its recent data breach to improve its security protocols to prevent further cybersecurity incidents and breaches of patient data. NYC Health + Hospitals discovered suspicious activity within its computer systems on February 2, 2026, with its investigation determining that its systems were accessed by an unauthorized third party for almost three months before the intrusion was detected. The threat actor first accessed its system on November 25, 2025, and retained access until February 11, 2026. The investigation suggests access was gained via a third-party vendor. Data compromised in the incident included names, Social Security numbers, medical information, health insurance information, billing and claims information, payment information, and precise geolocation data. The data breach was reported to the HHS’ Office for Civil Rights as affecting 1.8 million individuals. In the letter to...
Southern Illinois Ob-Gyn Associates Announces Data Breach Affecting 38,700 Individuals
A data breach at Southern Illinois Ob-Gyn Associates has affected 38,700 individuals. Data breaches have also been reported by Wellpoint Washington – involving Independent Clinics of Washington – and Dillon Family Medicine, part of McLeod Health. Southern Illinois Ob-Gyn Associates Southern Illinois Ob-Gyn Associates has notified 38,700 current and former patients about a breach of their personal and protected health information. The cybersecurity incident was identified on November 24, 2025, and after securing its systems, third-party cybersecurity experts were engaged to investigate and determine the nature and scope of the incident. They confirmed that its systems had been subject to unauthorized access, and on January 28, 2026, it was confirmed that there was unauthorized access to patient data. Data compromised in the incident included names, dates of birth, Social Security numbers, demographic information, health information, and health insurance information. Southern Illinois Ob-Gyn Associates said it has implemented additional technical safeguards and has...



