January 3, 2024 Google Agrees to Settle $5 Billion “Incognito” Privacy Lawsuit Google has agreed to settle a $5 billion lawsuit that alleged it spied on people who used the Chrome Browser in incognito mode and the ... Read more
December 11, 2023 Is Stripe HIPAA compliant? Stripe does not have to be HIPAA compliant to provide payment processing services to HIPAA covered entities and business associates because payment processing services are ... Read more
November 29, 2023 Ardent Health System Ransomware Attack Affects Hospitals in Multiple States A U.S. healthcare provider that operates hospitals in 6 states suffered a ransomware attack that has caused outages at several of its hospitals. Ardent Health ... Read more
November 21, 2023 COO of Cybersecurity Company Pleads Guilty to Attack on Georgia Hospitals to Drum up Business The former chief operating officer (COO) of a cybersecurity firm who hacked two hospitals in an attempt to win business has changed his plea to ... Read more
November 14, 2023 Why Was HIPAA Created? HIPAA was created to help individuals with health problems obtain health insurance and to make it easier for employees who change jobs or lose their ... Read more
November 11, 2023 HIPAA Compliance for Home Health Care HIPAA compliance for home health care workers can be especially challenging due to working in multiple – and sometimes unfamiliar – environments and often encountering ... Read more
November 9, 2023 3 HIPAA Violation Consequences That Are Often Overlooked The three HIPAA violation consequences most often overlooked affect individuals, healthcare organizations, and the timeliness of care in ways not often considered. HIPAA violations occur ... Read more
November 7, 2023 American Hospital Association Files Lawsuit Against HHS Over Tracking Technology Guidance In December 2022, the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) issued guidance for entities regulated by the Health Insurance ... Read more
November 6, 2023 Four Zero-Day MS Exchange Flaws Identified that Allow RCE and Data Theft Four zero-day vulnerabilities have been identified in Microsoft Exchange that can lead to the disclosure of sensitive information and even remote code execution. The flaws ... Read more
October 4, 2023 ZenRAT Password Stealer Masquerades as Bitwarden Password Manager Installer Password managers can greatly improve security and are one of the measures currently being promoted during Cybersecurity Awareness Month; however, care must be taken when ... Read more
September 26, 2023 One in Three Americans Now Use a Password Manager Password manager usage has grown by 60% in the past year as Americans are now starting to appreciate the benefits that these tools provide. According ... Read more
September 18, 2023 TikTok Slapped with €345 Million Fine for Child Privacy Violations The Data Protection Commission (DPC) in Ireland has fined TikTok €345 million ($368 million) for multiple violations of the General Data Protection Regulation (GDPR) related ... Read more
September 9, 2023 HIPAA Compliance Training for Employees HIPAA compliance training for all employees, including medical staff, healthcare administrators, and IT staff, is important because it equips these diverse professionals with the knowledge, skills, and ... Read more
August 15, 2023 4 Million Colorado Residents Have Health Data Stoen in MOVEit Hack The Colorado Department of Health Care Policy & Financing (HCPF), which administers the Colorado Medicaid program, Child Health Plan Plus, and other health care programs, has recently announced a ... Read more
August 7, 2023 Patch Released for Another Critical Flaw in PaperCut MF/NG Another zero-day vulnerability has been identified in PaperCut MF/NG print management software. The vulnerability is tracked as CVE-2023-39143 and has been rated critical with a ... Read more
July 28, 2023 Benefits of HIPAA Compliance HIPAA compliance yields benefits including enhanced patient data security, privacy protection, improved trust through transparent handling of personal health information, standardized and efficient healthcare transactions, ... Read more
July 18, 2023 Cloud Transition Security Guidance Issued by CISA The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a factsheet to help organizations securely transition from on-premises to cloud and hybrid environments and ... Read more
July 13, 2023 Urgent Patching Required to Fix Critical and High-Severity SonicWall GMS/Analytics Flaws SonicWall has released patches to fix 15 vulnerabilities in its Global Management System (GMS) firewall management and Analytics solutions, including 4 critical and 4 high-severity ... Read more
July 12, 2023 Major HCA Healthcare Data Breach Affects 11 Million Patients A major HCA Healthcare data breach has been reported this week after the discovery that a hacker stole the data of an estimated 11 million ... Read more
June 13, 2023 June 2023 Patch Tuesday: Microsoft Patches 78 Flaws; 6 Critical Microsoft has fixed 78 vulnerabilities on June 2023 Patch Tuesday bringing the month’s total up to 94 including the 16 vulnerabilities in Chromium-based browsers that ... Read more
June 2, 2023 Harvard Pilgrim Health Care: 2.5 Million Members Affected by Ransomware Attack Harvard Pilgrim Health Care, a Canton, Massachusetts-based nonprofit health services provider, has confirmed that it was the victim of a ransomware attack in April 2023. ... Read more
May 2, 2023 How to Make Google Forms HIPAA Compliant HIPAA Covered Entities and Business Associates need to know how to make Google Forms HIPAA compliant before using the Workspace service to collect, store, or ... Read more
April 21, 2023 HB 300 Training Requirements Information on the HB 300 training requirements for companies, organizations, and individuals that do business with Texas residents that involves access to protected health information ... Read more
April 19, 2023 HHS Publishes New Resources for Improving Healthcare Cybersecurity The Health Sector Coordinating Council Cybersecurity Working Group and the HHS 405(d) Program have published three additional resources for the healthcare sector to help them ... Read more
April 12, 2023 Healthcare Providers, Google Meet and HIPAA Compliance For the past few years, the good faith use of Google Meet and HIPAA compliance has not been an issue for healthcare providers due to ... Read more
April 7, 2023 Phishers Turn to Telegram to Market Their Kits and Services Cybercriminals are increasingly turning to Telegram to share tactics and market their services, especially threat actors specializing in phishing, according to Kaspersky. The phishing community ... Read more
March 15, 2023 March 2023 Patch Tuesday: Microsoft Fixes 83 Flaws, Including 2 Zero-Day Bugs Microsoft released patches to fix 83 vulnerabilities on March 2023 Patch Tuesday, including two actively exploited zero-day flaws, one in Outlook and one in Windows ... Read more
March 13, 2023 International Law Enforcement Operation Takes Down NetWire RAT An international law enforcement operation has resulted in the seizure of the infrastructure used to support the NetWire remote access Trojan (RAT). NetWire was first ... Read more
March 6, 2023 FTC Proposes Multi-Million-Dollar Penalty for BetterHelp to Resolve Consumer Privacy Violations The Federal Trade Commission (FTC) has announced another enforcement action stemming from the disclosure of consumers’ sensitive health information to marketing companies for advertising purposes. ... Read more
February 8, 2023 Dashlane Publishes Password Manager Source Code The password manager provider Dashlane has made the surprising announcement that the source code for its mobile app has been released on GitHub, in what ... Read more