News & Analysis as of

Hospitals Health Insurance Portability and Accountability Act

Princeton Community Hospital Replaces Computer Network After Petya Attack

Numerous hospitals were victims to last week’s (aka NotPetya) ransomware attack. But one hospital—Princeton Community Hospital in West Virginia–has admitted that it is going to replace its entire computer network after Petya...more

Enforcement Considerations for the Health Care Industry in the Wake of the WannaCry Ransomware Attack

by Ropes & Gray LLP on

On May 12, 2017, the WannaCry ransomware cryptoworm attacked over 230,000 computers in over 150 countries, holding data on the computers for ransom. WannaCry spread rapidly through networked systems that had not been updated...more

Organizations Want to Cry After WannaCry Ransomware Attacks

Earlier this month a massive ransomware attack spread throughout 150 countries, infecting 300,000 computers and crippling businesses across the globe. The ransomware, called “Wannacry,” infiltrated a variety of institutions,...more

Key Takeaways From FHA’s Health Law Summit

by Foley & Lardner LLP on

Foley recently co-hosted the Florida Hospital Association’s (FHA) 2017 Health Law Summit, which brought together more than 40 in-house attorneys and compliance officers from FHA member hospitals to discuss the current state...more

What's "Hidden" in the 21st Century Cures Act for Health Care Entities

by Nilan Johnson Lewis PA on

The 21st Century Cures Act (Cures) was signed into law December 13, 2016. While the primary focus of the 996-page Act centered on biomedical innovation, several components of Cures have significant implications for health...more

To Settle or Not to Settle – That Is the Question Raised by Recent HIPAA CMPs

by Davis Wright Tremaine LLP on

On February 1, 2017, the Department of Health and Human Services, Office for Civil Rights (“OCR”) announced that the Children’s Medical Center of Dallas (“Children’s”) has paid a civil monetary penalty (“CMP”) of $3.2 million...more

Hospital pays $3.2M Resulting from HIPAA Security Rule Noncompliance

by Saul Ewing LLP on

In one of the last health care related acts of President Obama’s administration, the U.S. Department of Health and Human Services, Office for Civil Rights (OCR), imposed a multimillion-dollar HIPAA civil money penalty (CMP)...more

Lack of Timely Action and Knowledge of Risk Results in $3.2 Million Civil Monetary Penalty for HIPAA Violations

Children’s Medical Center of Dallas (Children’s) was hit with a $3.2 million civil penalty from the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) for failing to take steps to properly protect...more

21st Century Cures: A Closer Look

by McDermott Will & Emery on

On December 7, 2016, the US Congress enacted the 21st Century Cures Act, substantial legislation intended to accelerate “discovery, development and delivery” of medical therapies by encouraging biomedical research investment,...more

2016 Health Care Year in Review

by Burr & Forman on

Since I began writing this year-end review in 2013, there have been some common themes – a shift to pay for quality and away from fee-for service, much of which has been brought about by the Affordable Care Act (ACA): efforts...more

Recent HIPAA Settlements Highlight Importance Of Business Associate Agreements

by Fisher Phillips on

Two related healthcare companies were forced to pay settlements with the federal government totaling over $500,000 over allegations relating to a data breach involving patient health information. Much of the negative...more

Outer Banks Hospital Reports Breach of PHI In Loss of Two Thumb Drives

Everybody knows how much I hate USB and thumb drives. The latest scheme is for hackers to leave thumb drives in coffee shops, airports, office buildings, libraries and other public places. These USB and thumb drives contain...more

OCR: No privacy breach is too small

by Thompson Coburn LLP on

The Office for Civil Rights (OCR) HIPAA enforcement efforts are continuing to increase. This year, the OCR has already announced 10 HIPAA enforcement actions involving fines, which is a 67 percent increase from last year and...more

Healthcare Compliance: Juggling Risk Mitigation Strategies

by Michael Volkov on

Healthcare organizations – ranging from physician practice groups to large, multi-state hospital systems – face a variety of risks, including fraud and abuse, as well as HIPAA privacy issues. Starting from a baseline risk...more

Illinois’ Largest Health System Agrees to Stringent HIPAA Breach Settlement

The Department of Health and Human Services Office for Civil Rights (OCR) announced on August 4, 2016, a settlement agreement with Advocate Health Care Network, an integrated healthcare system with ten hospitals and a...more

HSS Issues New Guidance on Ransomware Attacks Against HIPAA-Covered Entities

Ransomware attacks at hospitals and other healthcare facilities have dramatically increased over the last several years, putting healthcare providers in the uncomfortable position of having to consider paying thousands of...more

Record HIPAA Settlement Paid by Hospital Chain

Federal regulators announced last week that Illinois’ largest hospital chain would pay $5.5 million, a record payment under the Health Insurance Portability and Accountability Act (HIPAA), in connection with three 2013 data...more

To Protect Data: Keep Your Network Access Close, and Your Vendors Closer

Two recent data breach incidents in the healthcare industry prove what readers of this blog have heard all too often: KNOW THY VENDORS....more

Ransomware Reporting Requirements & New HHS Guidance

by Foley & Lardner LLP on

Ransomware is malicious software that denies access to data, usually by encrypting the data with a private encryption key that is only provided once a ransom is paid. Sometimes the ransomware will actually destroy, steal, or...more

Hospital Text Messaging Rules Placed on Hold by Joint Commission

by Foley & Lardner LLP on

The Joint Commission, which accredits hospitals and other health care organizations, hit pause on its prior May 2016 announcement to allow secure text messaging in hospitals and other health care organizations. The use of...more

Unplanned EHR Disruptions–Common for Hospitals

by Faegre Baker Daniels on

The prevalence of ransomware attacks is increasing. In fact, “[o]n average, more than 4,000 ransomware attacks have occurred daily since January 1, 2016,” according to a recent interagency government report. Given this...more

University of Mississippi Medical Center settles HIPAA violations for $2.75M

The Office for Civil Rights (OCR) has obtained another big settlement from a covered entity resulting from a data breach. This most recent settlement of fines and penalties and a Resolution Agreement is with the University of...more

“Your Money or Your PHI”: OCR Releases Guidance on Ransomware

On July 11, 2016, the Office for Civil Rights (OCR) released important new guidance on ransomware for hospitals and other healthcare providers and finally addressed the question of whether electronic protected health...more

Significant Hospital Related Mid-Year Updated OIG Review Activities

by Hinshaw & Culbertson LLP on

This is the second of three alerts discussing the mid-year update to the Fiscal Year 2016 Work Plan issued by the Office of Inspector General (OIG). In the first alert we discussed the top management performance challenges...more

Also In The News - Health Headlines - June 2016

by King & Spalding on

HHS recently announced delays to several rules and policies related to the 340B Drug Pricing Program. Policies postponed for later publication include the final 340B Omnibus Guidance, the Civil Monetary Penalties and Ceiling...more

123 Results
|
View per page
Page: of 5
Cybersecurity

"My best business intelligence,
in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up using*

Already signed up? Log in here

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.