HIPAA Times news | Concise, reliable news and insights on HIPAA compliance and regulations

2 min read

Learning from the arrest in the Snowflake data breach

Tshedimoso Makhene: Nov 6, 2024 2:26:28 PM

Canadian law enforcement authorities recently apprehended Alexander Moucka, also known by the online aliases Judische and Waifu, in connection with a major data breach affecting the cloud-based data warehousing platform, Snowflake. The incident...

News

2 min read

Should business associates give individuals access to their PHI?

Tshedimoso Makhene: Nov 6, 2024 3:12:42 AM

Business associates are not required to give individuals direct access to their protected health information (PHI). However, they must assist the...

HIPAA Compliance

3 min read

DHS and CISA outline post-quantum security steps for operational technology

Tshedimoso Makhene: Nov 5, 2024 4:47:50 PM

The US Department of Homeland Security (DHS) and the Cybersecurity and Infrastructure Security Agency (CISA) have released guidance to help operators...

News

2 min read

Canadian authorities arrest suspected hacker linked to Snowflake data breach

Tshedimoso Makhene: Nov 5, 2024 1:43:59 PM

Canadian law enforcement has arrested Alexander Moucka, a suspect in a significant cyberattack that compromised the data of numerous Snowflake...

HIPAA breaches & fines

2 min read

Are blood banks bound by HIPAA?

Tshedimoso Makhene: Nov 5, 2024 7:34:08 AM

Blood banks are generally not bound by HIPAA, but they adhere to FDA regulations, state privacy laws, and their own confidentiality policies to...

HIPAA Compliance

2 min read

Do electronic BAAs meet HIPAA Privacy Rule requirements?

Tshedimoso Makhene: Nov 4, 2024 4:59:24 PM

Electronic business associate agreements (BAAs), signed with an electronic signature, are permissible under the HIPAA Privacy Rule if they meet all...

HIPAA Compliance

2 min read

What are cybersecurity performance goals (CPGs)?

Tshedimoso Makhene: Nov 4, 2024 3:30:14 PM

Cybersecurity performance goals (CPGs) are a set of cybersecurity best practices and minimum-security standards developed by the Cybersecurity and...

Cybersecurity

2 min read

What is a machine-in-the-middle attack?

Tshedimoso Makhene: Nov 4, 2024 3:20:38 PM

Machine-in-the-middle attacks, often called "man-in-the-middle" (MitM) attacks, occur when an attacker intercepts communication between two parties...

Cybersecurity

2 min read

What is network segmentation?

Tshedimoso Makhene: Nov 4, 2024 3:45:00 AM

Network segmentation is a security practice that involves dividing a computer network into smaller, manageable sub-networks (segments). This approach...

Cybersecurity

2 min read

FAQs: Access controls

Tshedimoso Makhene: Oct 31, 2024 1:30:18 PM

Access controls are the security protocols and measures that determine who can access specific resources, systems, or information within an...

Cybersecurity

2 min read

Preparing for HIPAA security updates

Tshedimoso Makhene: Oct 30, 2024 4:01:47 PM

At the recent joint HHS and National Institute of Standards and Technology security conference, HHS OCR senior advisor for health information...

Regulatory updates

2 min read

Why is encryption important for HIPAA compliance?

Tshedimoso Makhene: Oct 29, 2024 6:51:42 PM

Encryption is a powerful tool for securing patient information and meeting HIPAA’s requirements for protecting ePHI. While it may not be strictly...

HIPAA Compliance

Image of shield for article about how the OCR released a ransomware prevention guidance

3 min read

OCR releases ransomware prevention guidance

Tshedimoso Makhene: Oct 29, 2024 1:13:47 PM

The U.S. Department of Health and Human Services’ Office for Civil Rights has published a video to help healthcare organizations prevent ransomware...

News

Prev 16 17 18 19 20 Next