- HIPAA technical controls no silver bullet for securing patient data (fiercehealthit.com)How to Implement Strong HIPAA Technical Safeguards (healthitsecurity.com)
Putting too much trust in technical controls could be a big mistake in a provider organization's security strategy… encryption and access management go a long way toward securing patient data, employee training remains "absolutely indispensable, absolutely top of the priority list"..
- Hackers swipe data of 4.5M at UCLA Health System in massive cyberattack (healthcareitnews.com)
Cyberattack occurred in September 2014, patients just notified ...four-hospital UCLA Health System on Friday notified a staggering 4.5 million of its patients that their protected health information and Social Security numbers were compromised following one of the largest HIPAA breaches ever reported.
- Health records a sticking point in debate over national data breach notification standards (fiercehealthit.com)
Health records appear to be a big factor in why proposed data breach notification legislation has stalled,…The bill,…would set a national standard governing how companies must respond when hackers steal customer data….has been an outcry over its provisions to preempt stricter state-level data breach laws.
- CVS Health investigates potential 3rd-party data breach (drugstorenews.com)
CVS Health...shut down access to its online and related mobile photo services as the company investigates a potential data breach..."We have been made aware that customer credit card information collected by the independent vendor who manages and hosts CVSPhoto.com may have been compromised,"...