What To Do When Vendors Fail

May 14, 2020

NRC Health, a software and patient satisfaction survey provider holding data from more than 25 million patients

NRC Health, a software and patient satisfaction survey provider holding data from more than 25 million patients, was locked out of its computer system in February because of a ransomware attack. When a breach like this occurs, the fault (at least in the eyes of the federal Office for Civil Rights [OCR]) tends to land on the vendor’s shoulders. But this is not always the case.

David Holtzman, Executive Advisor at CynergisTek, contributes this article, which focuses on on how healthcare providers deal with the security of their vendors, as well as HIPAA requirements/suggestions.

Click here to read the full story.

Previous Article
The CyberWire Daily Podcast - Episode 1085
The CyberWire Daily Podcast - Episode 1085

Cyberwire’s latest podcast features Caleb Barlow as he discusses Alan Brunacini’s concept of an Incident Ac...

Next Article
Ransomware Attackers Exfiltrate Data From Magellan Health
Ransomware Attackers Exfiltrate Data From Magellan Health

Magellan Health, a U.S. managed care company that focuses on specialty areas of healthcare, says it was hit...