Data security news & resources

ChatGPT said: Oracle Health is at the center of a major data breach impacting several U.S. hospitals and healthcare organizations. The breach, which originated from compromised legacy servers, has led to the theft of sensitive patient records. The attacker is now using ransomware to extort victims, demanding payments to prevent the stolen data from being […]

With its user-friendly interface, seamless file sharing capabilities, and collaboration features, it’s no wonder Dropbox is one of the most popular cloud storage solutions on the market. Millions of businesses and individuals rely on this platform to store and access their files securely across different devices. Chief amongst these organizations are healthcare companies—medical providers, practices, […]

Does this headline give you a case of deja vu? That’s because, only last month, a ransomware group claimed to steal the personal health information (PHI) of 2.2 million patients registered with McLaren Health Care. However, it’s only now that McLaren is acknowledging the breach. What happened, and why the discrepancy?  Let’s find out.  What […]

From drug discovery to enhanced diagnosis to HR processes, the applications for AI across the healthcare ecosystem are almost endless. With these systems relying so heavily on data, it’s natural that the role of the Chief Information Security Officer (CISO) is entering a new era.  While two years ago, just 19% of CISOs sat on […]

A little while back in December 2020, the Office of Civil Rights (OCR) issued a Notice of Proposed Rulemaking (NPRM), notifying us of upcoming augmentations to the HIPAA Privacy Rule. Three years and a lot of back and forth later, and it looks like those changes are about to be finalized into law. While we […]

It’s no secret that the healthcare sector is a prime target for cyber-attacks. Research shows healthcare organizations in the US experienced 1,426 attacks per week in 2022 – up 60% from the year before.  But while healthcare companies spend their limited resources and time shielding patient health information (PHI) from external threats, they forget that […]

Miami-based healthcare software provider, Independent Living Systems, is in the hot seat this week, after announcing a data breach that impacted over 4.2 million individuals.  The incident, which is the largest healthcare breach of the year so far, came to light on March 14, when the company shared an announcement stating it experienced an “incident […]

Under the Health Insurance Portability and Accountability Act (HIPAA), healthcare organizations must put in place specific controls to protect the confidentiality, integrity and availability of protected health information (PHI).  However, complying with HIPAA today is much more complex than it was twenty years ago. As congress recently noted, “advances in electronic technology could erode the […]

“Is it true we need to retain our HIPAA (Health Insurance Portability and Accountability Act) audit log records for six years?”  That’s a common question healthcare organizations ask us when they learn about Polymer data loss prevention (DLP) for HIPAA compliance.  While our audit reporting capabilities enable you to capture records for well over a […]

Warren Buffet once said: “It’s good to learn from your mistakes. It’s better to learn from other people’s mistakes.”  What’s that got to do with HIPAA? Well, whenever the OCR or FTC dolls out a penalty for a HIPAA violation, they also provide a handy document explaining why they gave out the fine, and how […]

The Health Insurance Portability and Accountability Act (HIPAA) consists of several rules that HIPAA-covered entities must follow to protect the confidentiality, integrity and availability of protected patient health information (PHI).  One such rule, which we will focus on today, is the mandate to “enhance safeguards as needed to limit unnecessary or inappropriate access to and […]