GovInfoSecurity

Modernizing HIPAA: Are You Ready?

The HIPAA Security Rule may soon undergo its first major overhaul in decades. Although finalization could come as early as ...
JD Supra

Proposed Modernization of the HIPAA Security Rules

The HIPAA Security Rule was originally promulgated over 20 years ago. While it historically provided an important regulatory floor for securing electronic protected health information, the Security ...
JD Supra

System Hardening, HIPAA, and the Practical Path to Protecting ePHI

The January 2026 OCR Cybersecurity Newsletter is the U.S. Department of Health and Human Services Office for Civil Rights’ latest installment in its periodic series translating HIPAA Security Rule ...
Dark Reading

New HIPAA Cybersecurity Rules Pull No Punches

An unmitigated revamp of healthcare cybersecurity is coming in 2025, and experts warn that the compliance burden for organizations will be steep. Since 2005, healthcare organizations have been subject ...
Becker's ASC

OIG Blasts CMS on HIPAA Security Gaps; Guidance for ASC Compliance

The OIG recently completed its review of CMS’s oversight with regard to HIPAA Security, and the result is alarming. OIG had some harsh words for CMS’s efforts, saying it has taken “limited actions,” ...
Renal & Urology News

Proposed Rule Changes Aimed at Tightening HIPAA Requirements

Doctors in a meeting (Getty Images) The Department of Health and Human Services is responding to a growing threat of cyberattacks against the healthcare industry. Healthcare was the most breached ...
Becker's ASC

Shared Usernames: HIPAA Security No-No

Many times in our work with medical facilities and ASCs, we see usernames shared among multiple people. Sometimes this is for (perceived) convenience, sometimes it is because more than one person ...
Healthcare IT News

AI ransomware attacks, proposed HIPAA changes spark concern for one security pro

Managing healthcare cybersecurity is a complex proposition, to say the least. Health system CISOs, CIOs and other information security leaders used to simply have to worry about ensuring robust ...
Healthcare IT News

OCR's HIPAA audit program lacked mettle, OIG says

In examining how the Office of Civil Rights administered its periodic Health Insurance Portability and Accountability Act audit program from January 2016 through December 2020, the U.S. Department of ...
Purdue University

Compliance with HIPAA Privacy and Security Regulations (S-10)

The Covered Components and individuals who work in any of the Covered Components listed on the HIPAA Compliance website, are affected by this policy. Purdue University is a Hybrid Entity under the ...
Becker's Hospital Review

OIG Blasts CMS on HIPAA Security Gaps; Guidance for Compliance

The OIG recently completed its review of CMS’s oversight with regard to HIPAA Security, and the result is alarming. OIG had some harsh words for CMS’s efforts, saying it has taken “limited actions,” ...