Stay updated with the latest cybersecurity news!
February 12, 2020
The Novel Coronavirus is spreading so rapidly that it will most likely become a pandemic. Even in times of crisis like this, HIPAA-covered entities must follow all reasonable safeguards to protect the privacy of their patients who may be infected with the disease concerned. However, the HIPAA Privacy Rule does offer some accommodation in such cases.
Are Electronic Health Records Useful Yet?
More than two decades ago, President Bill Clinton signed the Health Insurance Portability and Accountability Act—HIPAA—launching the era of electronic health records. The story of EHRs serves as a prelude to what we’re experiencing today in almost every facet of our lives: a utopian promise of ubiquitous data tempered by technical challenges and concerns over privacy.
FDA Issues Cybersecurity Alert on GE Healthcare Medical Devices
The U.S. Food and Drug Administration is issuing a safety communication informing health care providers, facilities and patients about cybersecurity vulnerabilities identified for certain GE Healthcare Clinical Information Central Stations and Telemetry Servers. The vulnerabilities identified could allow an attacker to generate false alarms or interfere with the function of patient monitors connected to these devices.
Malware Attack Results in Corruption of Medical Records: 30,000 Patients Affected
Fondren Orthopedic Group experienced a cyberattack that affected certain parts of its IT system. The incident was described as a malware attack that damaged the medical records of certain patients. Prompt action was taken to contain the infection and its systems were restored; however, the medical records corrupted by the malware could not be recovered and have been permanently lost.
Find out how the handling of patient privacy security comes with a bit of risk associated with it, but also provides some ways to relief and surpass those risks.
24By7Security, Inc. is a full service Cybersecurity strategy, implementation, operations and training firm. We provide Cybersecurity and Compliance related services across all functions of the enterprise. Our Cybersecurity services include security risk assessments, vulnerability assessments and penetration testing, social engineering testing, web application testing, policies and procedures, incident response management, forensics, cybersecurity awareness training, and more. Our Compliance services include CFPB/DFA, FIPA, FERPA, SOC-SSAE 18, GLBA, HIPAA, PCI, SOX, GDPR, HITRUST, ISO 27001, FFIEC, NIST-CSF, NYDFS Cybersecurity Regulations and others.