Category Archives: Latest Posts

Industry Groups Provide Feedback on Sen. Warner’s ‘Cybersecurity is Patient Safety’ White Paper

Sen. Mark Warner (D-Va) recently published a white paper framing cybersecurity as a patient safety issue. The paper suggested several policy updates that could help improve healthcare cybersecurity and encourage healthcare organizations to invest more in cybersecurity, such as the introduction of an incentive program similar to the Meaningful Use program that rewards healthcare providers… Read More »

COVID-19 Vaccination Statuses of 500,000 VA Employees have been Impermissibly Disclosed

The COVID-19 vaccination statuses of approximately 500,000 Department of Veterans Affairs employees have been impermissibly disclosed. According to the VA, a spreadsheet containing employee names and their vaccination statuses was placed on SharePoint without appropriate access permissions being set and an email with a link to the spreadsheet was sent on behalf of the Veterans… Read More »

Amazon Ends Support for Third Party HIPAA-Eligible Alexa Skills

Amazon has announced that it will stop support for third-party HIPAA-eligible skills for its Alexa devices, which means developers will no longer be able to create Alexa skills that collect data covered under the Health Insurance Portability and Accountability Act (HIPAA). Amazon launched its HIPAA-compliant Alexa feature in April 2019, with skills added for patients… Read More »

Webinar Next Week: 12/14/2022: Solving HIPAA Compliance (Software Demonstration)

Achieving and maintaining compliance with the Privacy, Security, Breach Notification, and Omnibus Rules of the Health Insurance Portability and Accountability Act (HIPAA) can be a challenge for HIPAA-regulated entities. One of the easiest approaches is to seek assistance from a third-party compliance company such as Compliancy Group. Compliancy Group was founded in 2005 by former… Read More »

Medical Practices with a High Percentage of Connected Medical Devices Experience More Cyberattacks

The medical Internet of Things (IoT) is helping to improve efficiency and make healthcare more patient-centric; however, as hospitals increase the number of networked medical devices, the attack surface increases, giving malicious actors more opportunities to conduct attacks.  Connected devices with IoT sensors such as insulin pumps, defibrillators, and glucose monitors often have vulnerabilities that… Read More »

Healthcare Sector Warned About Cuba Ransomware Attacks

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have issued a joint cybersecurity advisory about Cuba Ransomware and have shared details of the tactics, techniques, and procedures (TTPs) used by the group, along with Indicators of Compromise (IoCs) to help network defenders improve their defenses against attacks and rapidly… Read More »