The U.S. Department of Health and Human Services and the Health Sector Coordinating Council Cybersecurity Working Group released a new guide recently to help the public and private sectors in…

We are all familiar with Business Associate Agreements and the importance of having this contract in place, explaining exactly what your Business Associate can and cannot do with the organization’s…

When it comes to the HIPAA Privacy and Security Rules, the healthcare industry needs to ensure that the Protected Health Information in any form that is maintained, transmitted, and received…

The 405(d) Program is focused on providing the healthcare and public health (HPH) sector with impactful resources, products, and tools to raise awareness and strengthen the industry’s cybersecurity posture against…

If your organization does not have an email policy in place now is the time to execute one. The importance of an email policy is to communicate to the workforce…

Ransomware is a form of malware designed to encrypt files on a device, rendering files and the systems that rely on them unusable. The attacker then demands a ransom from…

Risks are defined as situations involving exposure to danger. Risk involves uncertainty about the effects/implications of an activity focusing on negative, undesirable consequences. A Threat is an intention to inflict…

The HIPAA Security Rule established national standards to protect individuals’ electronic Protected Health information (ePHI). The General rule is to ensure the Confidentiality, Integrity and Availability (CIA) of all ePHI…