Malware and the Home Depot Security Breach

Security experts are analyzing the latest details that big-box retailer Home Depot provided about the data breach that exposed 56 million payment cards, including the nature of the malware used in the attack.

“It may have been the lowest-hanging fruit for the attacker to pluck.”

Read the full Healthcare Info Security article

HIPAA Alert – More On-Site Audits Planned

Federal regulators are delaying the start of phase two of the HIPAA audit program until the agency responsible for enforcement finishes the roll-out of technology that will allow audited organizations to submit data via a Web portal.

And once the program resumes, the Department of Health and Human Services’ Office for Civil Rights plans to do more on-site audits and fewer remote “desk audits” than officials originally planned, Linda Sanches, an OCR senior adviser, said during a Sept. 9 presentation at the Healthcare Information and Management Systems Society’s privacy and security forum in Boston.

Read the full article on HealthCare Info Security website

Cyber Attacks Hitting the Health Sector

The healthcare industry has had several loud wake-up calls so far this year, providing an alarm that the sector is not immune to the kinds of hacker attacks that have been more commonly associated with banks and retailers.

The most recent was a breach at Community Health Systems, which the hospital chain says involved Chinese hackers who used “highly sophisticated malware” to gain access to information on 4.5 million patients.

The healthcare industry cannot afford to snooze while cybercriminals plan their next assault. Organizations of all sizes need to be ready to recognize the threats and mitigate the risks.

Read the full Healthcare Info Security article here

Photo courtesy of Flickr