N.Y. Presbyterian, Columbia Resolution Clarify HHS Expectations for IT Asset Inventory in Largest HIPAA Settlement

by Gary Pritts | May 8, 2014 | HIPAA

The largest HIPAA settlement ever, in the amount of $4.8 Million, by two affiliated organizations, NY Presbyterian and Columbia University, sheds light on HHS expectations for HIPAA compliance, at least for a large academic medical center with 24,000 employees.  The... Read More

Windows XP Users at Risk – Upgrade now if at all possible!

by Gary Pritts | Apr 29, 2014 | HIPAA

Microsoft announced over the weekend that all versions of Internet Explorer have a “serious security hole” that hackers can use to take over a computer and hijack your computer.  In their announcement, Microsoft stated that they are aware of limited, targeted attacks... Read More

Encrypting Mobile Devices – First Create a Plan

by Gary Pritts | Apr 24, 2014 | HIPAA

The recent enforcement actions against Concentra Health Services and QCA Health Plan, Inc. are two more messages to HIPAA covered entities (and business associates!) to encrypt their PHI. For most organizations, encrypting mobile devices is usually the first priority... Read More

Windows XP Users–Upgrade now to protect your network from security vulnerabilities

by Gary Pritts | Mar 25, 2014 | HIPAA

In just under 3 weeks, Microsoft will end the Windows XP era ending support for both Windows XP and Microsoft Office 2003 on April 8, 2014. Most Microsoft products have a life cycle of about a decade, but these two products have been around longer. What prompted the... Read More

Top 20 Security Controls Updated, and “Compliance vs. Security”

by Gary Pritts | Mar 6, 2014 | HIPAA

“Top 20 Critical Security Controls” began in 2008 as an effort by U.S. and international agencies, including our own NSA, which has been the subject of so much media attention recently.  Eventually, recommendations for what became the “Critical Security Controls”... Read More