HIPAA Times news | Concise, reliable news and insights on HIPAA compliance and regulations

2 min read

What is a machine-in-the-middle attack?

Tshedimoso Makhene: Nov 4, 2024 3:20:38 PM

Machine-in-the-middle attacks, often called "man-in-the-middle" (MitM) attacks, occur when an attacker intercepts communication between two parties without their knowledge. This allows the attacker to eavesdrop on the communication, alter messages,...

Cybersecurity

2 min read

What is network segmentation?

Tshedimoso Makhene: Nov 4, 2024 3:45:00 AM

Network segmentation is a security practice that involves dividing a computer network into smaller, manageable sub-networks (segments). This approach...

Cybersecurity

2 min read

FAQs: Access controls

Tshedimoso Makhene: Oct 31, 2024 1:30:18 PM

Access controls are the security protocols and measures that determine who can access specific resources, systems, or information within an...

Cybersecurity

2 min read

Preparing for HIPAA security updates

Tshedimoso Makhene: Oct 30, 2024 4:01:47 PM

At the recent HIPAA conference, HHS OCR senior advisor for health information privacy, Marissa Gordon Nguyen, announced that the HHS has submitted...

Regulatory updates

2 min read

Why is encryption important for HIPAA compliance?

Tshedimoso Makhene: Oct 29, 2024 6:51:42 PM

Encryption is a powerful tool for securing patient information and meeting HIPAA’s requirements for protecting ePHI. While it may not be strictly...

HIPAA Compliance

Image of shield for article about how the OCR released a ransomware prevention guidance

3 min read

OCR releases ransomware prevention guidance

Tshedimoso Makhene: Oct 29, 2024 1:13:47 PM

The U.S. Department of Health and Human Services’ Office for Civil Rights has published a video to help healthcare organizations prevent ransomware...

News

2 min read

Over 100 million impacted by Change Healthcare ransomware attack

Tshedimoso Makhene: Oct 28, 2024 6:42:43 PM

UnitedHealth has confirmed that the February ransomware attack on Change Healthcare exposed the personal and healthcare data of over 100 million...

Cybersecurity

2 min read

Boston Children’s Health Physicians targeted in ransomware attack

Tshedimoso Makhene: Oct 28, 2024 6:34:09 PM

Boston Children’s Health Physicians (BCHP) fell victim to a ransomware attack involving an IT vendor. The attacker, the BianLian group, is now...

Cybersecurity

2 min read

Are delivery truck lines business associates?

Tshedimoso Makhene: Oct 28, 2024 3:48:19 PM

Delivery truck lines help transport goods or documents. They are not considered business associates under HIPAA, as they typically do not handle or...

HIPAA Compliance

2 min read

Is the United Parcel Service considered a business associate under HIPAA?

Tshedimoso Makhene: Oct 26, 2024 1:00:00 AM

In its role as a carrier of physical packages containing PHI, UPS is not considered a business associate under HIPAA because it qualifies for the...

HIPAA Compliance

2 min read

What is HIPAA's Conduit Exception

Tshedimoso Makhene: Oct 25, 2024 3:24:26 AM

The HIPAA Conduit Exception refers to a specific provision in the HIPAA Privacy Rule that allows certain entities to share protected health...

HIPAA Compliance

2 min read

Privacy vs confidentiality in healthcare

Tshedimoso Makhene: Oct 24, 2024 12:34:02 PM

Privacy is about a patient's control over their information while confidentiality is the healthcare provider's duty to safeguard that information...

Editorial

2 min read

Is the US Postal Service a business associate under HIPAA?

Tshedimoso Makhene: Oct 24, 2024 11:20:09 AM

The US Postal Service is not a business associate under HIPAA because it does not access or use protected health information. Instead, it serves as a...

HIPAA Compliance

Prev 1 2 3 4 5 Next