July 30, 2015

July 2015 Newsletter

JULY 2015 NEWSLETTER ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Dear , Welcome to the July 2015 Newsletter for SPHER(TM). Besides providing your medical facilities with the best possible user activity monitoring solution, our goal with these newsletters will be to draw your attention to issues directly related to incident and breach detection as well as peripheral breach information. Our common concern is that healthcare PHI is under constant attack from within our own groups and externally. Our pledge is that SPHER remains a key component of your IT Security framework and act as a deterrent to unauthorized access of your patients’ data. This past […]
July 20, 2015

Maintaining HIPAA Compliance While Preparing for HIPAA Audits

By Linda McReynolds, Esq. & Ronald Quirk, Esq. on June 24, 2015 Federal regulators are actively preparing to conduct extensive audits to determine business compliance with HIPAA privacy and security requirements. Covered businesses that handle PHI, i.e.,  individually identifiable health information transmitted or maintained in any form, are required to maintain HIPAA compliance and are subject to substantial monetary fines if found in violation of HIPAA rules. Traditionally, the federal government has focused its enforcement actions on health plans and healthcare providers. This is changing. The HIPAA audit process, expected to commence in the summer or fall of 2015, is […]
July 17, 2015

CFO Gets Prison Time for HITECH Fraud: Hospital Executive Falsified ‘Meaningful Use’ Attestation

A former Texas hospital CFO has been sentenced to 23 months in federal prison for submitting false documents so a medical center could receive payments under the HITECH Act electronic health records financial incentive program. In addition to his prison sentence, Joe White, former CFO of the now-shuttered Shelby Regional Medical Center in East Texas, was ordered to pay restitution of nearly $4.5 million to the HITECH incentive payment program. Court documents indicate that to help pay the restitution, White has been ordered to liquidate an IRA account and an annuity, which as of November 2014, had respective balances of […]
July 15, 2015

Criminal Attacks: The New Leading Cause of Data Breach in Healthcare

  The Fifth Annual Benchmark Study on Privacy & Security of Healthcare Data, sponsored by ID Experts, shows that, for the first time, criminal attacks are the number-one root cause of healthcare data breaches. We calculated a 125 percent growth in these attacks over the last five years—a huge net change in any study. Employee negligence and lost or stolen devices still result in many data breaches, according to the findings. However, one of the trends we are seeing is a shift of data breaches—from accidental to intentional—as criminals are increasingly targeting and exploiting healthcare data. Cyber criminals recognize two […]
July 13, 2015

CIOs should prepare for possibility of lawsuits following security breaches

July 10, 2015 | By Katie Dvorak Chief information officers may soon have to find themselves lawyers, because as cybersecurity attacks increase, the IT leaders could end up in the courtroom, according to an article at the Wall Street Journal. In the wake of the fallout from the news that the U.S. Office of Personnel Management was hacked, exposing the records of millions of federal employees, agency CIO Donna Seymour is facing a lawsuit. “We are absolutely going to see more CIOs taking the fall and ultimately being named in lawsuits,” Matthew Karlyn, a partner at Foley & Lardner LLP, […]