cyber-attack

Don’t Get Sprayed: CISA Alert Reminds Health Care Entities to Use Strong Passwords

By Elizabeth G. Litten on May 6, 2020

Posted in Privacy & Security, Uncategorized

A joint Alert from the U.S. Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA) and the U.K.’s National Cyber Security Centre (NCSC) warns of new cyber attacks targeting COVID-19-related information.

Notably, these attacks succeed when system users have weak or common passwords. NCSC published frequently found passwords here, many of which are…

How the Grinch Steals Health Care Data: OCR Warnings and Tips in Time for the Holidays

By Elizabeth G. Litten on December 4, 2019

Posted in Health IT, Privacy & Security

More and more often, health care data is stolen or made inaccessible by targeted ransomware attacks. The Office for Civil Rights (OCR) published a newsletter this week that provides warnings for HIPAA covered entities and business associates. It also provides practical tips to prevent and help you survive these attacks.

OCR’s warnings should resonate with…

Breach or Ransomware Attack? Can’t Sue Under HIPAA, but Maybe Under CFAA

By Elizabeth Litten on March 28, 2016

Posted in Privacy & Security

The following post was contributed by our colleague Lucy Li.

HIPAA itself does not provide a private right of action. So when a hacker or rogue employee impermissibly accesses or interferes with electronic data or data systems containing protected health information, an employer subject to HIPAA cannot sue the perpetrator under HIPAA. Similarly, when…

MENU

HIPAA & Health Information Technology

cyber-attack

Don’t Get Sprayed: CISA Alert Reminds Health Care Entities to Use Strong Passwords

How the Grinch Steals Health Care Data: OCR Warnings and Tips in Time for the Holidays

Breach or Ransomware Attack? Can’t Sue Under HIPAA, but Maybe Under CFAA

About Our Firm