by Gary Pritts | May 20, 2014 | HIPAA
A tax fraud gang appears to be targeting a large number of healthcare and senior living organizations that all use the same vendor for payroll and HR services. KrebsOnSecurity previously covered this gang’s criminal activity in April, when they encountered a... Read More
by Gary Pritts | May 19, 2014 | HIPAA
On February 11, 2014, Centura Health, the nonprofit umbrella that owns Mercy Regional Medical Center in Durango, Colorado, experienced a phishing attack on employees that resulted in a breach of privacy that left the personal information of about 1,000 patients... Read More
by Gary Pritts | May 15, 2014 | HIPAA
On May 2nd, Molina Healthcare alerted 5,261 former members of Molina Healthcare of New Mexico of a data breach that took place around March 18, 2014. A postcard mailing about the Health Insurance Marketplace was sent to these former members that contained their... Read More
by Gary Pritts | May 14, 2014 | HIPAA
On March 31, the HHS Office for Civil Rights (OCR) finally provided details on what the next phase of its HIPAA audit program will look like. These are outlined in detail in their presentation (slides here) and also in this article written by Adam Greene and Rebecca... Read More
by Gary Pritts | May 12, 2014 | HIPAA
A recent survey by The Identity Theft Resource Center (ITRC) reported that medical identity theft accounted for 43.8 percent of all identity thefts reported in the US last year. The medical/healthcare segment accounted for the largest number of breaches, with other... Read More
by Gary Pritts | May 12, 2014 | HIPAA
Conducting a meaningful use security risk assessment has been a requirement for HIPAA Covered entities since 2005, and now their business associates must also comply. The Meaningful Use program (Stage 1) also includes the requirement: “Conduct or review a... Read More
Eagle works with clients in healthcare and healthcare business associates to ensure HIPAA Security compliance. We provide a set of policy templates for a variety of business associate types including Cloud Vendors, Third Party Administrators, and Information Technology companies.