Former OCR Official Reveals Top Reason for Risk Analysis Audit Failure
A key reason for risk analysis failure during an audit by the HHS Office for Civil Rights is mistaking a technical or non-technical evaluation for a risk analysis.
Read MoreHIPAA Topics
This archive includes a variety of HIPAA topics including best practices for compliance, techniques for staff training, expert interpretations of the requirements and other topics.
Eagle works with clients in healthcare and healthcare business associates to ensure HIPAA Security compliance. We provide a set of policy templates for a variety of business associate types including Cloud Vendors, Third Party Administrators, and Information Technology companies.
Partners HealthCare Informs 2,600 Patients of Malware Attack After 7-Month Investigation
Partners issued a press release stating that it would begin notifying patients whose information was at risk after a malware attack in May 2017. An outside forensics team determined that sensitive data for approximately 2,600 patients was vulnerable.
Read More
Ransomware Targeting Hospitals and Health IT Systems
SamSam ransomware is making a name for itself by attacking healthcare-related organizations. Prior to its famous attack on Allscripts, SamSam infected three hospitals. Ransomware remains a significant risk for organizations in 2018.
Read More
Ransomware Destroys Small Practice EHR Database
Hermes ransomware attacks small physician practice. Ransomware encrypted database files prior to routine backup. Entire EHR database lost and backup unusable. Attack illustrates the importance of multiple generations of backup and separating backup from computer network.
Read More
Cloud Storage HIPAA Compliance Recommendations
How do you ensure cloud storage HIPAA compliance? There are a number of file storage services in the cloud and if you are designated a business associate for a healthcare payer or provider you need to form the right policies and agreements.
Read More