The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) have issued a joint security advisory aimed at reminding businesses to be on guard over the Labor Day and other
Continue Reading Holiday Weekends Provide No Time Off From Cyber Threats
More and more often, health care data is stolen or made inaccessible by targeted ransomware attacks. The Office for Civil Rights (OCR) published a newsletter this week that provides warnings
Continue Reading How the Grinch Steals Health Care Data: OCR Warnings and Tips in Time for the Holidays
A two-physician practice in Battle Creek, Michigan is reportedly the first health care provider to cease operations as a result of a ransomware attack. The Minneapolis Star Tribune reports that
Continue Reading Ransomware Claims A Victim
Last week, I blogged about a recent U.S. Department of Health and Human Services Office of Civil Rights (OCR) announcement on its push to investigate smaller breaches (those involving fewer
Continue Reading Six Tips for a Small Business to Avoid HIPAA Security Breach Headaches
In a recent Guidance, the Office of Civil Rights of the U.S. Department of Health and Human Services (“OCR”) appears to have attempted to reverse an impression that its
Continue Reading Eight Tips to Confront the New Initiative by HHS on PHI Security
The following post was contributed by our colleague Lucy Li.
HIPAA itself does not provide a private right of action. So when a hacker or rogue employee impermissibly accesses
Continue Reading Breach or Ransomware Attack? Can’t Sue Under HIPAA, but Maybe Under CFAA
I received a disturbing robo-call over the weekend informing me that someone had attempted to use my credit card number fraudulently in a retail store in the next county. When
Continue Reading Hacked Health Records Prized for their Black Market Value