ComplianceJunction HIPAA Training Receives SCCE Accreditation
The Society of Corporate Compliance and Ethics (SCCE) has recently accredited ComplianceJunction’s ‘HIPAA Training for Organizations’ training course. The SCCE is…
Latest News
Phishers Gain Access to 23 L.A. County Department of Health Services Email Accounts
Los Angeles County Department of Health Services’ employees were targeted in a recent phishing campaign, and almost 2,800 Catholic Medical…
Kaiser Permanente Website Tracker Breach Affects 13.4 Million Individuals
Kaiser Permanente Health Plan Inc. is notifying 13.4 million individuals that some of their personal data has been disclosed to…
BianLian Threat Group Claims Responsibility for Cyberattack on Tennessee Eye Clinic Network
Politzer and Durocher, PLC, which does business as Optometric Physicians of Middle Tennessee (OPMT), has recently reported a hacking incident…
Multiple Class Action Lawsuits Filed Against City of Hope National Medical Center Over Data Breach
Several class action lawsuits have been filed against City of Hope National Medical Center, a National Cancer Institute (NCI)-designated cancer…
Threat Actors Increasingly Targeting Vulnerabilities for Initial Access
The exploitation of vulnerabilities in software and operating systems is becoming far more common for initial access to networks, with…
March 2024 Healthcare Data Breach Report
March was a particularly bad month for healthcare data breaches with 93 branches of 500 or more records reported to…
UHG: Substantial Proportion of US Population May Be Affected by Change Healthcare Cyberattack
Andrew Witty, Chief Executive of UnitedHealth Group (UHG) has confirmed that a ransom was paid to prevent the publication of…
Kisco Senior Living & Island Ambulatory Surgery Center Disclose Summer 2023 Cyberattacks
Notification letters have been sent to more than 34,500 individuals about ransomware attacks that occurred more than 9 months ago….
Email Accounts Compromised at UW Health and Medical Home Network
Email accounts have been compromised at the University of Wisconsin Hospitals and Clinics Authority and the Medical Home Network in…
Editorial
CMS Restricting Access to Healthcare Datasets Will Cause Long Term Damage to Public Health
Earlier this month, the HHS’ Centers for Medicare and Medicaid Services (CMS) announced two significant changes to how it handles…
The Three Pillars of HIPAA Compliance
The three pillars of HIPAA compliance are to develop, implement and continuously improve a HIPAA compliance program, a HIPAA training…
Security Breaches in Healthcare in 2023
Report: Security Breaches in Healthcare (Direct Download PDF, 1.9MB, 16 pages) An unwanted record was set in 2023…
State Of HIPAA – 2024 Predictions
It has been 28 years since President Clinton signed the Health Insurance Portability and Accountability Act (HIPAA) into law –…
Interviews
Get The FREE
HIPAA Compliance Checklist
Immediate Delivery of Checklist Link To Your Email Address
Please Enter Correct Email Address
Your Privacy Respected
HIPAA Journal Privacy Policy
Get The FREE
HIPAA Compliance Checklist
Immediate Delivery of Checklist Link To Your Email Address
Please Enter Correct Email Address
Your Privacy Respected
HIPAA Journal Privacy Policy
HIPAA Compliance News
March 2024 Healthcare Data Breach Report
March was a particularly bad month for healthcare data breaches with 93 branches of 500 or more records reported to…
New Jersey Nursing Facility to Pay $100,000 CMP to Resolve HIPAA Right of Access Violation
The HHS’ Office for Civil Rights has announced another financial penalty has been imposed for a violation of the HIPAA…
HHS Issues Guidance to Teaching Hospitals and Medical Schools on Informed Consent Requirements
The Department of Health and Human Services (HHS) has written to the nation’s teaching hospitals and medical schools to clarify…
HIPAA Breach News
Phishers Gain Access to 23 L.A. County Department of Health Services Email Accounts
Los Angeles County Department of Health Services’ employees were targeted in a recent phishing campaign, and almost 2,800 Catholic Medical Center patients have been affected by a data breach at…
Kaiser Permanente Website Tracker Breach Affects 13.4 Million Individuals
Kaiser Permanente Health Plan Inc. is notifying 13.4 million individuals that some of their personal data has been disclosed to third parties such as Microsoft (Bing), Google, and X (Twitter)…
BianLian Threat Group Claims Responsibility for Cyberattack on Tennessee Eye Clinic Network
Politzer and Durocher, PLC, which does business as Optometric Physicians of Middle Tennessee (OPMT), has recently reported a hacking incident to the HHS Office for Civil Rights involving the personal…
News Categories
- HIPAA Compliance News
- Editorials
- Interviews
- HIPAA Updates
- HIPAA Breach News
- Healthcare Data Privacy
- Healthcare Cybersecurity
- Legal News
- HIPAA Advice
- OSHA News
- HIPAA Training News
- Practice Management
- Healthcare Compliance News
- OIG News
Top Article
Exploit Released for ‘PrintNightmare’ Zero-Day Windows Print Spooler RCE Vulnerability
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert following the publication of a proof of concept (PoC)…
Most Read Articles
HIPAA Changes 2024
Multiple changes to HIPAA regulations are expected in 2024.
HIPAA & Social Media: How To Avoid Violations
Organizations must take care how social media is used to avoid HIPAA violations.
7 Elements of HIPAA compliance
The seven elements of a compliance program.
How To Become HIPAA Compliant
First identify which standards your organization needs to comply with HIPAA compliant, then implement these.
HIPAA Training Requirements
HIPAA security training is required for all members of the workforce regardless of whether they have access to PHI or not.
New HIPAA Regulations
Changes to HIPAA in 2024, including expected upcoming updates.
HIPAA Updates
Senator Seeks Information on How to Improve Health Data Privacy
Senator Bill Cassidy (R-LA), ranking member of the U.S. Senate Committee on Health, Education, Labor, and Pensions (HELP), is seeking feedback on how health data privacy can be improved while…
Email Account Breaches Reported by Legacy Hospice, Live Oak Surgery Center, University of Miami Health
Email accounts have been compromised at Legacy Hospice and Live Oak Surgery Center, and a University of Miami Health employee’s personal data breach also saw their work email account compromised,…
HHS Proposes New Rule to Implement HIPAA Standards for Healthcare Attachments and Electronic Signatures
The Secretary of the Department of Health and Human Services (HHS) has proposed a new rule that will require the adoption of standards for healthcare attachments transactions and electronic signatures…
HHS OIG Compliance News
HHS-OIG Warns Consumers About Remote Patient Monitoring Scam
The HHS Office of Inspector General (HHS-OIG) has issued a warning to the public about a fraud scheme that targets…
Weak Cloud Security Controls at the Administration for Children and Families Have Put Sensitive Data at Risk
The Department of Health and Human Services (HHS) Administration for Children and Families (ACF) has put the sensitive data of…
The Role of Compliance Officers in HHS OIG Regulations
The role of compliance officers in HHS OIG regulations is to ensure policies and procedures are in place to mitigate…
Get The FREE
HIPAA Compliance Checklist
Immediate Delivery of Checklist Link To Your Email Address
Please Enter Correct Email Address
Your Privacy Respected
HIPAA Journal Privacy Policy
Get The FREE
HIPAA Compliance Checklist
Immediate Delivery of Checklist Link To Your Email Address
Please Enter Correct Email Address
Your Privacy Respected
HIPAA Journal Privacy Policy
Legal News
Multiple Class Action Lawsuits Filed Against City of Hope National Medical Center Over Data Breach
Several class action lawsuits have been filed against City of Hope National Medical Center, a National Cancer Institute (NCI)-designated cancer…
Ernest Health Sued Over 2024 Ransomware Attack and Data Breach
The Texas health system Ernest Health is being sued by patients who had their protected health information compromised in a…
MedData Settles Class Action Data Breach Lawsuit for $7 Million
Last month, the Spring, TX-based revenue cycle management firm MedData agreed to a $7 million settlement to resolve a class…
FTC Prohibits Alcohol Addiction Firm from Sharing Consumer Data with Third Parties
The Federal Trade Commission (FTC) has ordered the alcohol addiction treatment firm Monument to stop disclosing consumers’ health data to…
FTC Fines Mental Health Company Cerebral $7.1 Million for Consumer Privacy Violations
The Federal Trade Commission (FTC) has fined the mental health startup Cerebral $7.1 million for consumer privacy violations and deceptive…
Orrick, Herrington & Sutcliffe Agree $8 Million Settlement to Resolve Class Action Data Breach Lawsuit
The San Francisco, CA-based law firm Orrick, Herrington & Sutcliffe has agreed to a $8 million settlement to resolve a…
Children’s Healthcare of Atlanta Sued for Disclosing Health Information to Facebook
Children’s Healthcare of Atlanta is one of the latest healthcare providers to face a class action lawsuit over the use…
Atlanta Women’s Health Group Sued Over 2023 Ransomware Attack
Atlanta Women’s Health Group is facing a class action lawsuit over an April 2023 cyberattack that saw an unauthorized third…
Healthcare CyberSecurity
Threat Actors Increasingly Targeting Vulnerabilities for Initial Access
The exploitation of vulnerabilities in software and operating systems is becoming far more common for initial access to networks, with…
March 2024 Healthcare Data Breach Report
March was a particularly bad month for healthcare data breaches with 93 branches of 500 or more records reported to…
Only 28% of Ransomware Victims Choose to Pay Ransom
According to the Q1, 2024 ransomware report from the ransomware remediation firm Coveware, ransom payments have fallen to a record…
CISA & Partners Share New Threat Intelligence on Akira Ransomware
The Cybersecurity & Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), Europol’s European Cybercrime Centre (EC3), and the Netherlands’…
Technology News
Paubox Launches HIPAA Compliant Online Forms
Paubox, the market leader in HIPAA-compliant email, has added a new feature to the Paubox Email Suite that allows HIPAA-regulated entities to create secure, HIPAA-compliant online forms for collecting patient…
GAO: FDA Should Update Medical Device Cybersecurity Agreement
The Government Accountability Office (GAO) has recommended the Food and Drug Administration (FDA) update its formal medical device agreement with the Cybersecurity and Infrastructure Security Agency (CISA), as the agreement…
Is Google Keep HIPAA Compliant?
Google Keep is HIPAA compliant and can be used to create notes containing Protected Health Information and share them via Google Dive provided organizations subscribe to a Google Workspace plan…
Events
Healthcare Cyber Security Summit June 12-13 with 20% Discount
The HealthSec: Cyber Security for Healthcare Summit returns for its 2nd edition in Boston, Massachusetts on June 12th – 13th!…
FREE WEBINAR: Best Practices For Effective Healthcare Compliance
Are you a HIPAA Officer or do you have responsibility for compliance in your organization? Are you 100% certain that…
Virtual National HIPAA Summit 2024 – February 27th to March 1st
The National HIPAA Summit is a leading forum on healthcare EDI, privacy, cybersecurity, and HIPAA compliance. The Virtual 41st National…
OSHA Compliance
OSHA Publishes 2023 Injury and Illness Data
The Occupational Safety and Health Administration has published injury and illness data for 2023, which was collected under OSHA’s July 2023 new Improve Tracking of Workplace Injuries and Illnesses final rule….
OSHA Issues Final Rule on Employee Representation During OSHA Inspections
The Occupational Safety and Health Administration (OSHA) has issued a final rule that confirms that employees are entitled to representation during OSHA inspections, and employee representatives do not have to…
California State University, Long Beach Fined for Failing to Assess Potential Workplace Violence
The California Occupational Safety and Health Administration (OSHA) has imposed a $10,215 financial penalty on California State University, Long Beach (CSULB) for failing to assess potential workplace violence in its…
Get The FREE
HIPAA Compliance Checklist
Immediate Delivery of Checklist Link To Your Email Address
Please Enter Correct Email Address
Your Privacy Respected
HIPAA Journal Privacy Policy
Get The FREE
HIPAA Compliance Checklist
Immediate Delivery of Checklist Link To Your Email Address
Please Enter Correct Email Address
Your Privacy Respected
HIPAA Journal Privacy Policy
Healthcare Compliance News
ONC Releases Common Agreement Version 2.0
On April 22, 2024, the Department of Health and Human Services’ Office of the National Coordinator for Health Information Technology…
NY Attorney General Finds Northwell Health Deceptively Advertised COVID-19 Testing Sites
New York Attorney General, Letitia James, has announced a settlement with New York’s largest health network, Northwell Health, to resolve…
One-third of Healthcare Websites Still Use Meta Pixel Tracking Code
A recent analysis of healthcare websites by Lokker found widespread use of Meta Pixel tracking code. 33% of the analyzed…
HIPAA Compliance Training News
ComplianceJunction HIPAA Training Receives SCCE Accreditation
The Society of Corporate Compliance and Ethics (SCCE) has recently accredited ComplianceJunction’s ‘HIPAA Training for Organizations’ training course. The SCCE is…
Is HIPAA Training is a Federal Requirement?
Yes, HIPAA training is mandated by the Health Insurance Portability and Accountability Act (HIPAA) and is a federal requirement for…
How Long Does HIPAA Training Take?
The duration of HIPAA training varies depending on the specific needs and roles of the individuals being trained, but for…
How Long Is HIPAA Training Good For?
HIPAA training is good for one year because HIPAA training should be completed annually to ensure best practice compliance with…
Featured Topics
- HIPAA Compliance Checklist
- Healthcare Compliance Certification
- HIPAA Compliance Software
- Business Associate Agreements
- HIPAA Updates 2024
- HITECH Act Explained
- HIPAA Breach Statistics
- SOC 2 Compliance Checklist
- What is the HITECH Act?
- The 10 Most Common HIPAA Violations You Should Avoid
- What is the HHS OIG Exclusions List?
- HIPAA Risk Assessment
- HIPAA And Social Media Guidelines
- HIPAA Training Requirements
- What is HIPAA Certification?
- HIPAA Compliance for Email
Healthcare Data Privacy
March 2024 Healthcare Data Breach Report
March was a particularly bad month for healthcare data breaches with 93 branches of 500 or more records reported to the Department of Health and Human Services (HHS) Office for…
OctaPharma Plasma Closes Donation Centers While It Deals with Suspected Ransomware Attack
The Swiss pharmaceutical firm, Octapharma Plasma, is dealing with a cyberattack that has affected systems at 190 plasma donation centers in 35 U.S. states. Those centers have been temporarily closed…
FTC Prohibits Alcohol Addiction Firm from Sharing Consumer Data with Third Parties
The Federal Trade Commission (FTC) has ordered the alcohol addiction treatment firm Monument to stop disclosing consumers’ health data to third parties for advertising purposes without obtaining affirmative consent. A…
