HIPAA - Healthcare Support Central

Are You Ready for the Enhanced HIPAA Requirements for Penetration Testing?

Electronic Health Reporter

JULY 3, 2025

Also known as a pen test, this is […] The article Are You Ready for the Enhanced HIPAA Requirements for Penetration Testing? By Chris Cronin, partner, HALOCK Security Labs and chair of the DoCRA Council We strongly recommend an annual penetration test if your company is on the internet.

HIPAA

HIPAA Tests

2025 HIPAA Journal Annual Survey Published: Key Insights into Compliance Challenges

The HIPAA Journal

JUNE 12, 2025

The HIPAA Journal has released the results of its 2025 Annual HIPAA Compliance Survey, offering a detailed snapshot of how healthcare organizations are managing HIPAA compliance in today’s regulatory environment. The survey also examined training practices at HIPAA-regulated entities.

HIPAA

HIPAA Unit Organization and Environment Business Associate Documentation

Healthcare CIOs Prepare For HIPAA Update

Forbes Healthcare

JANUARY 6, 2025

These changes to HIPAA, outlined in a Notice of Proposed Rulemaking (NPRM), aim to increase cybersecurity protections for electronic protected health information (ePHI).

HIPAA

Webinars

How to Start Virtual Care the Right Way: A Proven Roadmap for 2025 and Beyond

MORE WEBINARS

What is HIPAA Incident Management?

The HIPAA Journal

MAY 20, 2025

HIPAA incident management is the process of tracking, responding to, and documenting HIPAA security incidents as they are detected by automated security tools or reported by members of the workforce. Regardless of whether HIPAA incident management is fully automated, manual, or semi-manual, the process must include specific elements.

HIPAA

HIPAA Business Associate Documentation Follow-Up

Behavioral Healthcare Provider Settles HIPAA Risk Analysis Investigation for $225,000

The HIPAA Journal

JULY 8, 2025

The Department of Health and Human Services (HHS) Office for Civil Rights (OCR) has agreed to settle alleged violations of the Health Insurance Portability and Accountability Act (HIPAA) with Deer Oaks – The Behavioral Health Solution for $225,000. This is the 17th financial penalty to be imposed on a HIPAA-regulated entity this year.

HIPAA

HIPAA Discharges Long Term Care Business Associate

Can AI Coexist With HIPAA? How Collaboration Can Solve the Tech-Compliance Conundrum

Electronic Health Reporter

JULY 3, 2025

From the dawn of the Internet to the advent of electronic health records, the healthcare industry historically has been slow to embrace new technologies and the improvements they can […] The article Can AI Coexist With HIPAA? How Collaboration Can Solve the Tech-Compliance Conundrum appeared first on electronichealthreporter.com.

HIPAA

HIPAA Collaboration

OCR’s Third Phase of HIPAA Compliance Audits Underway

The HIPAA Journal

MARCH 26, 2025

Department of Health and Human Services (HHS) Office for Civil Rights (OCR) has confirmed that the long-awaited third phase of its HIPAA compliance audits is underway and will involve HIPAA compliance audits of 50 covered entities and business associates. OCRs workload has increased considerably, yet its budget has remained flat.

HIPAA

HIPAA Business Associate Huddles/Rounds

HIPAA: Understanding Patient Confidentiality and How It Relates to Medical Assistants

Prism Career Institute

JULY 1, 2025

The Health Insurance Portability and Accountability Act (HIPAA) is a federal law that regulates how patient information is managed, protecting their privacy. Medical assistants are required to abide by HIPAA laws to ensure proper confidentiality when collaborating with patients. What Is HIPAA?

Medical Assistant

Medical Assistant HIPAA Medication Vital Signs

ComplianceJunction HIPAA Training Receives SCCE Accreditation

The HIPAA Journal

APRIL 26, 2024

The Society of Corporate Compliance and Ethics (SCCE) has recently accredited ComplianceJunction’s ‘HIPAA Training for Organizations’ training course. The training has been used by more than 1,000 healthcare organizations and over 100 universities to raise awareness of the HIPAA regulations.

HIPAA

HIPAA Certification Continuing Education Insurance

The Importance of HIPAA Compliant Teletherapy Platforms

Valant

SEPTEMBER 30, 2024

However, with this digital transformation comes the critical need for HIPAA compliant teletherapy platforms. What is HIPAA and Why is it Crucial in Teletherapy? The Health Insurance Portability and Accountability Act (HIPAA) sets the standard for protecting sensitive patient data.

HIPAA

HIPAA Business Associate Certification Documentation

New York Woman Avoids Jail for Criminal HIPAA Violation

The HIPAA Journal

MARCH 21, 2025

A New York woman has avoided a jail term for a criminal violation of the Health Insurance Portability and Accountability Act (HIPAA), having been sentenced to probation. The Federal Bureau of Investigation (FBI) investigated and DAgostino was arrested and charged for the HIPAA violation. in restitution.

HIPAA

HIPAA Documentation Insurance

Clarifying a patient’s misunderstanding of the HIPAA privacy rule

Physicians Practice

JUNE 19, 2025

Understanding HIPAA's Privacy Rule clarifies how incidental disclosures in health care settings are permissible, ensuring patient privacy while facilitating essential communications.

HIPAA

HIPAA Communication

Navigating the 2024 proposed HIPAA security rule amendments

Healthcare Dive - Practice Management

MARCH 14, 2025

A new proposed rule aims to significantly amend the HIPAA security rule — these are the key updates to know.

HIPAA

April 2025 Healthcare Data Breach Report

The HIPAA Journal

MAY 21, 2025

These are likely to continue to be reported by affected HIPAA-regulated entities over the next few weeks. In April, at least 6 HIPAA-regulated entities reported breaches with placeholder figures. Geographical Distribution of Healthcare Data Breaches HIPAA-regulated entities in 29 U.S.

Business Associate

Business Associate HIPAA Hospital Insurance

Social Media HIPAA Violations: 4 Common Examples

99MGMT

MAY 21, 2024

Social media HIPAA violations are surprisingly common. Here are some uncomfortable examples that caused compliance issues for clinics.

HIPAA

HIPAA Violation Cases

The HIPAA Journal

APRIL 27, 2025

HIPAA violation cases are compliance investigations that result from a data breach being notified to the Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) or a privacy complaint being submitted to OCR via the complaints portal. There are many different types of HIPAA violation cases.

HIPAA

HIPAA Business Associate Hospital Medication

Verisource Services Increases Data Breach Victim Count to 4 Million

The HIPAA Journal

APRIL 29, 2025

The OCR breach portal still lists the incident as affecting 112,726 patients and plan members of its HIPAA-regulated entity clients, although that total may well be updated in the coming days. The post Verisource Services Increases Data Breach Victim Count to 4 Million appeared first on The HIPAA Journal.

HIPAA

HIPAA Follow-Up Best Practices Billing

Oracle Health Breach Affects Patients of Multiple U.S. Multiple Hospitals

The HIPAA Journal

MARCH 31, 2025

Multiple Hospitals appeared first on The HIPAA Journal. Oracle Cloud maintains that there was no breach of Oracle Cloud and none of the published credentials are for Oracle Cloud, but has not provided any official explanation. The post Oracle Health Breach Affects Patients of Multiple U.S.

Hospital

Hospital HIPAA

Somnia’s $2.4 Million Data Breach Settlement Receives Final Approval

The HIPAA Journal

MAY 1, 2025

The plaintiffs claimed that Somnia was negligent by failing to implement appropriate cybersecurity safeguards to ensure the privacy and confidentiality of the data stored on its network, did not follow industry security standards, and was not fully compliant with the HIPAA Rules. The post Somnias $2.4

HIPAA

HIPAA Documentation Insurance Medication

HIPAA Update to Include Cybersecurity Requirements for Health Care Organizations

Pulmonology Advisor - Practice Management

MAY 17, 2024

An update to the Health Insurance Portability and Accountability Act (HIPAA) Security Rule is now underway with new cybersecurity requirements. An update to the HIPAA Security Rule is planned for this spring and it will include new cybersecurity requirements. A serious concern is the tracking of patient data.

HIPAA

HIPAA Hospital Insurance Follow-Up

Ransomware Attack Causes System-wide Outage at Kettering Health

The HIPAA Journal

MAY 21, 2025

Today, Interlock also came forward to claim a large-scale attack on WestLothian Council, UK, which has been disrupting its school network for over a week,” Rebecca Moody, Head of Data Research at Comparitech, told The HIPAA Journal. This post will be updated as further information becomes available.

HIPAA

HIPAA Billing Scheduling Medication

Survey Raises Concerns About CPG Awareness

The HIPAA Journal

APRIL 17, 2025

One of the objectives of the HIPAA Journal 2024/25 Annual Survey was to obtain insights into HIPAA compliance best practices. If finalized, the proposals will not only become standards required for HIPAA compliance , but may also be adopted by CMS as conditions for participation in Medicare and Medicaid.

HIPAA

HIPAA Best Practices Tests Communication

Importance of HIPAA Compliance in Medical Coding and Billing

Northwest Career College

APRIL 30, 2025

HIPAA is a short form of the Health Insurance Portability and Accountability Act , a law devised to protect patients’ personal information regarding their health conditions. The following article will explain why HIPAA compliance is significant in medical billing and coding and how it helps protect patients and providers.

HIPAA

HIPAA Billing Medical Coding Medication

HHS proposes HIPAA update to boost healthcare cybersecurity

Healthcare Dive - Practice Management

JANUARY 3, 2025

The update, which would be the first since 2013, aims to clarify and provide more instruction on securing health data as cyberattacks and breaches in the sector skyrocket.

HIPAA

AHA; Health-ISAC Warn U.S. Hospitals About Potential Terror Threat

The HIPAA Journal

MARCH 21, 2025

Hospitals About Potential Terror Threat appeared first on The HIPAA Journal. Also, increasing relationships with local and federal law enforcement may streamline response efforts during an attack, explained the AHA and Health-ISAC. The post AHA; Health-ISAC Warn U.S.

Hospital

Hospital HIPAA

Ascension Notifying Patients About Data Breach at Former Business Partner

The HIPAA Journal

APRIL 29, 2025

The post Ascension Notifying Patients About Data Breach at Former Business Partner appeared first on The HIPAA Journal. Carolina Anesthesiology is located in High Point, North Carolina, and provides anesthesiology services to High Point Regional Health System and Atrium Health.

Discharges

Discharges Medical History HIPAA Billing

When Is It Okay to Use Personal Devices at Work?

Scrubs

AUGUST 8, 2023

However, with HIPAA and patient privacy concerns, some nurses may be disciplined for this if it isn’t done at appropriate times. Under HIPAA, facilities “must implement device and media controls as a part of their physical safeguards.”

HIPAA

HIPAA Communication Teamwork Medication

Sunflower Medical Group Sued Over 221,000-Record Data Breach

The HIPAA Journal

MARCH 26, 2025

The lawsuit also claims the medical group was in violation of the Health Insurance Portability and Accountability Act (HIPAA), drawing attention to 10 alleged violations of the HIPAA Rules.The lawsuit also took issue with the length of time it took for the affected individuals to discover their sensitive data had been compromised.

Medication

Medication HIPAA Insurance

HIPAA audits not effective at improving cybersecurity: OIG

Healthcare Dive - Practice Management

NOVEMBER 26, 2024

The HHS’ Office for Civil Rights’ audit program was too narrow in scope to effectively assess data protections and reduce cyber risks in the healthcare sector, according to the report.

HIPAA

Medical Express Ambulance Service Data Breach Affects 118K Individuals

The HIPAA Journal

APRIL 16, 2025

The HIPAA Journal previously reported on another affected client, Hamilton County in Tennessee. The post Medical Express Ambulance Service Data Breach Affects 118K Individuals appeared first on The HIPAA Journal. Rhea Medical Centers investigation is ongoing, but it has been confirmed that up to 8,309 individuals have been affected.

Medication

Medication HIPAA Insurance Medical History

DOJ Announces Largest Ever Health Care Fraud Takedown

The HIPAA Journal

JULY 1, 2025

The post DOJ Announces Largest Ever Health Care Fraud Takedown appeared first on The HIPAA Journal. The takedown also included charges being filed against 74 defendants across 58 cases involving prescription opioid trafficking, 49 defendants were charged in connection with $1.17

HIPAA

HIPAA Tests Diagnostics Insurance

Surmodics & Kentfield Hospital Fall Victim to Cyberattacks

The HIPAA Journal

JULY 7, 2025

The post Surmodics & Kentfield Hospital Fall Victim to Cyberattacks appeared first on The HIPAA Journal. Neither Kentfield Hospital nor its operator, Vibra Healthcare, has confirmed a cyberattack or data breach so far.

Hospital

Hospital HIPAA Diagnostics Tests

Website Tracking Lawsuit Against Orlando Health Survives Motion to Dismiss

The HIPAA Journal

MARCH 28, 2025

The HHS Office for Civil Rights issued guidance for HIPAA-regulated entities on the use of these tools, which OCR said could violate HIPAA. The post Website Tracking Lawsuit Against Orlando Health Survives Motion to Dismiss appeared first on The HIPAA Journal. The lawsuit W.W.

HIPAA

HIPAA Communication Business Associate Appointments

Physician’s Guide to Privacy & Medical Records Laws in Texas

99MGMT

JUNE 11, 2025

Learn how HIPAA, TMRPA, and state rules protect patient data or result in costly penalties. Does your staff fully understand medical records laws in Texas?

HIPAA

HIPAA Medication

Compumedics Cyberattack Affects Almost a Dozen Healthcare Providers

The HIPAA Journal

JULY 8, 2025

The post Compumedics Cyberattack Affects Almost a Dozen Healthcare Providers appeared first on The HIPAA Journal. Northern Light Health has issued its own substitute breach notice confirming the data incident was limited to Compumedics systems, and said no Northern Light systems were compromised in the incident.

HIPAA

HIPAA Diagnostics Billing Insurance

New HIPAA Exemption Added to Kentucky Consumer Data Protection Act

The HIPAA Journal

MARCH 18, 2025

An amendment to the law has been signed by state governor Andy Beshear that narrows the scope of the law, exempting information collected by healthcare providers covered under HIPAA that maintain protected health information in compliance with the HIPAA Rules and other related regulations. 8 164.514(e).

HIPAA

HIPAA Documentation

CMS Notifies 103,000 Medicare Beneficiaries About Unauthorized Account Creation

The HIPAA Journal

JULY 1, 2025

The post CMS Notifies 103,000 Medicare Beneficiaries About Unauthorized Account Creation appeared first on The HIPAA Journal. The affected Medicare beneficiaries are being encouraged to review their Medicare Summary Notices and Explanation of Benefits statements and should report any unfamiliar charges or services.

HIPAA

Artificial Intelligence can be the Catalyst for Transformative Change at NIH

Sensible Medicine

MARCH 25, 2025

For example, the Feinstein Institute for Medical Research settled HIPAA violations for $3.9 Sharing data that includes sensitive patient health information, exposes researchers and institutions to significant legal and financial risks. million after being accused of mishandling a laptop containing protected health information.

Collaboration

Collaboration HIPAA Follow-Up Appointments

HIPAA-Compliant Social Media Strategy Checklist

99MGMT

JUNE 14, 2024

Social media has become an integrated part of today's world, and it is no surprise that it plays an increasingly important role in our lives. As healthcare professionals, you know the importance of staying up-to-date with the latest technologies, including social media-related ones.

HIPAA

Cybersecurity Firm CEO Charged with Installing Malware on a Hospital Computer

The HIPAA Journal

APRIL 18, 2025

The post Cybersecurity Firm CEO Charged with Installing Malware on a Hospital Computer appeared first on The HIPAA Journal. Felony convictions see the penalties increased to a fine of up to $100,000 and/or a jail term between 1 and 10 years.

Hospital

Hospital HIPAA

Phishing Attack Affects Multiple Cancer Treatment Centers

The HIPAA Journal

JULY 8, 2025

Affected Entity State Individuals Affected California Cancer Associates for Research and Excellence – San Diego CA 17,250 Lake City Cancer Care, LLC FL 15,142 Radiation Oncology Network of Southern California, LLC CA 12,944 Rocky Mountain Oncology Care WY 10,268 e+ Oncologics Louisiana, LLC LA 8,270 California Cancer Associates for Research and Excellence (..)

HIPAA

HIPAA Insurance Medication

Gramercy Surgery Center Agrees to Pay $400,000 to Cover Data Breach Claims

The HIPAA Journal

JULY 9, 2025

. – was filed against Gramercy Surgery Center in the United States District Court for the Southern District of New York over the data breach, alleging Gramercy Surgery Center was negligent as it failed to employ reasonable security measures, as required by HIPAA , the FTC Act, and other standards.

HIPAA

HIPAA Documentation Scheduling Insurance

Cyberattack on Michigan Plastic Surgery Practice Affects Almost 20,000 Patients

The HIPAA Journal

MARCH 19, 2025

The post Cyberattack on Michigan Plastic Surgery Practice Affects Almost 20,000 Patients appeared first on The HIPAA Journal.

HIPAA

HIPAA Insurance

Esse Health Confirms Almost 264,000 Patients Affected by April 2025 Cyberattack

The HIPAA Journal

JULY 1, 2025

The post Esse Health Confirms Almost 264,000 Patients Affected by April 2025 Cyberattack appeared first on The HIPAA Journal. Individuals affected by the data breach are encouraged to be vigilant against identity theft and fraud.

Insurance

Insurance HIPAA Medical History Diagnostics

Are You Ready for the Enhanced HIPAA Requirements for Penetration Testing?

2025 HIPAA Journal Annual Survey Published: Key Insights into Compliance Challenges

Webinars

Trending Sources

Healthcare CIOs Prepare For HIPAA Update

Webinars

What is HIPAA Incident Management?

Behavioral Healthcare Provider Settles HIPAA Risk Analysis Investigation for $225,000

Can AI Coexist With HIPAA? How Collaboration Can Solve the Tech-Compliance Conundrum

OCR’s Third Phase of HIPAA Compliance Audits Underway

HIPAA: Understanding Patient Confidentiality and How It Relates to Medical Assistants

ComplianceJunction HIPAA Training Receives SCCE Accreditation

The Importance of HIPAA Compliant Teletherapy Platforms

New York Woman Avoids Jail for Criminal HIPAA Violation

Clarifying a patient’s misunderstanding of the HIPAA privacy rule

Navigating the 2024 proposed HIPAA security rule amendments

April 2025 Healthcare Data Breach Report

Social Media HIPAA Violations: 4 Common Examples

HIPAA Violation Cases

Verisource Services Increases Data Breach Victim Count to 4 Million

Oracle Health Breach Affects Patients of Multiple U.S. Multiple Hospitals

Somnia’s $2.4 Million Data Breach Settlement Receives Final Approval

HIPAA Update to Include Cybersecurity Requirements for Health Care Organizations

Ransomware Attack Causes System-wide Outage at Kettering Health

Survey Raises Concerns About CPG Awareness

Importance of HIPAA Compliance in Medical Coding and Billing

HHS proposes HIPAA update to boost healthcare cybersecurity

AHA; Health-ISAC Warn U.S. Hospitals About Potential Terror Threat

Ascension Notifying Patients About Data Breach at Former Business Partner

When Is It Okay to Use Personal Devices at Work?

Sunflower Medical Group Sued Over 221,000-Record Data Breach

HIPAA audits not effective at improving cybersecurity: OIG

Medical Express Ambulance Service Data Breach Affects 118K Individuals

DOJ Announces Largest Ever Health Care Fraud Takedown

Surmodics & Kentfield Hospital Fall Victim to Cyberattacks

Website Tracking Lawsuit Against Orlando Health Survives Motion to Dismiss

Physician’s Guide to Privacy & Medical Records Laws in Texas

Compumedics Cyberattack Affects Almost a Dozen Healthcare Providers

New HIPAA Exemption Added to Kentucky Consumer Data Protection Act

CMS Notifies 103,000 Medicare Beneficiaries About Unauthorized Account Creation

Artificial Intelligence can be the Catalyst for Transformative Change at NIH

HIPAA-Compliant Social Media Strategy Checklist

Cybersecurity Firm CEO Charged with Installing Malware on a Hospital Computer

Phishing Attack Affects Multiple Cancer Treatment Centers

Gramercy Surgery Center Agrees to Pay $400,000 to Cover Data Breach Claims

Cyberattack on Michigan Plastic Surgery Practice Affects Almost 20,000 Patients

Esse Health Confirms Almost 264,000 Patients Affected by April 2025 Cyberattack

Stay Connected