Addresses HIPAA compliance requirements for covered entities and business associates, including the Privacy Rule, Security Rule, and Breach Notification Rule. Posts cover risk analyses, administrative safeguards, technical controls, workforce training, and audit preparation to protect electronic health information.
posts
In February 2024, a ransomware attack on Change Healthcare — one of the largest health payment processors in the United States — disrupted claims processing for hospitals, pharmacies, and clinics across the country for weeks. UnitedHealth Group, its parent company, later confirmed that the personal health information of roughly 100 million individuals
A $1.3 Million Fine for Skipping the Basics In 2023, the U.S. Department of Health and Human Services fined Lafourche Medical Group $480,000 for a phishing attack that compromised nearly 35,000 patient records. The root cause wasn't a sophisticated zero-day exploit. It was the
