Home » CTEK in the News » HHS Updates Security Risk Assessment Tool

× Share this Article

Facebook
Twitter
Email
LinkedIn

HHS Updates Security Risk Assessment Tool

October 17, 2018 Mayuri Kumar

Share this Article
Facebook
Twitter
Email
LinkedIn

The Department of Health and Human Services has updated its HIPAA security risk assessment tool to better assist small and mid-sized healthcare entities and their vendors in performing a comprehensive risk analysis.

Failure to conduct a risk assessment has been a weakness repeatedly identified in HHS breach investigations involving organizations of all sizes, including in the recent $16 million HIPAA settlement with Anthem (see Anthem Mega Breach: Record $16 Million HIPAA Settlement).

David Finn’s comments are featured in this article.

Cyber Incidents in Healthcare: How Much Would You Pay?

HIPAA lets providers text patients, but is it secure?

Most Recent Articles

ER Physician Association Hacked

Marti Arvin covers the American College of Emergency Physicians, which says a "malware" attack affected tens of thousands of the group's current and former members.

CynergisTek’s Barlow: We Need to Think About COVID-19 Data-Related Breaches Going Forward

Caleb Barlow provided commentary for this article, where he shares his perspectives about the recent breach at Atascadero State Hospital in California.

A look at Darkside ransomware. Ransomware attacks on schools are up. REvil hits Acer. California state employee exposes COVID patient data.

Caleb Barlow offers commentary on the recent story about a California state employee exposing the COVID-19 test and tracking data of more than two thousand people.

California breach highlights contact tracing data vulnerabilities

Caleb Barlow offers commentary on the recent story about a California state employee exposing the COVID-19 test and tracking data of more than two thousand people.

‘Accountability framework’ proposed to promote secure health care practices

David Finn covers a new report from the CyberPeace Institute highlighting the toll that cyberattacks are taking on the health care industry.

Data extortion attempts signal new era for ransomware tactics

Caleb Barlow covers a new report from Crowdstrike revealing that 97 healthcare organizations victimized by ransomware attacks using extortion in 2020.

Healthcare Cybersecurity Sets New Course of Action in 2021

Caleb Barlow discusses how the increase in cyberattacks compromises both patient safety and weakens trust in the healthcare sector and how they must implement a three-point action plan to change.

Cybercriminals post health system employee information online

Caleb Barlow details how a hacker group known for ransomware attacks posted sensitive employee files online following a cyberattack at a New Mexico health system.

Ransomware Attack's Economic Impact: $67 Million

Marti Arvin discusses ransomware attacks and other disruptive cyber incidents that have been surging in the healthcare sector, especially during the COVID-19 pandemic.

Workplace violence: Key considerations for healthcare entities

Marti Arvin discusses difficulties working in the healthcare industry and additional environmental stressors which can affect healthcare workers as well as patients and their families.

Mobile health apps leak sensitive data through APIs, report finds

Ben Denkers provides commentary for this piece, focused on a recent report from cybersecurity researcher Alissa Knight and mobile security company Approov.

Seven Strategies From The Pandemic To Protect Healthcare From Ransomware

Caleb Barlow discusses the rise of ransomware attacks in healthcare and breaks down seven strategies that can protect healthcare organizations from ransomware.

Ransomware and EHR Systems: A Dangerous Mix

David Finn offers commentary for this piece, which details the dangerous effects of ransomware on EHR systems.

Hackers Calling Fair Game on Healthcare Institutions

Caleb Barlow discusses the onslaught of ransomware attacks in 2020 and how healthcare institutions should up their security infrastructure to protect themselves.

Inspiration, investigation, and deplatforming: notes from the Capitol Hill riot.

US Congress members report devices stolen during the capital riot. Online inspiration for violence seems distributed, not centralized. Caleb Barlow examines protocols for handling inbound intel.

Ransomware Attacks in Healthcare Surging

David Finn discusses Check Point’s new data showing that ransomware and other cyberattacks on healthcare entities globally have increased by about 45% in the last two months.

Clinical Trials at Risk: Mitigating against Cyberattack

Caleb Barlow details the COVID-19 pandemic increased risk of cyberattacks for clinical trial sponsors and vendors and describes how cyberattacks have evolved over the last several years.

From weaponized AI to threats against the vaccine rollout, here are 6 cybersecurity trends to watch in 2021

Caleb Barlow, CEO of CynergisTek, predictions on healthcare cyberattacks was featured in this recent article.

FDA Seeks Comment on Guidelines to Prevent Hacking of Medical Devices

David Finns offers his expertise for this piece, which details the FDA’s recent paper, called Communicating Cybersecurity Vulnerabilities to Patients: Considerations for a Framework.

Telehealth Is The Future But May Also Be Healthcare Security’s Achilles' Heel

Caleb Barlow, CEO of CynergisTek details the advantages of telehealth, as well as the security issues it simultaneously brings to the healthcare industry.

Return to Home

Insights Center

HHS Updates Security Risk Assessment Tool

Previous Article

Next Article