Cyber Security News

  • Top Tips for Office Managers: Insights on HIPAA and Cybersecurity 

    Top Tips for Office Managers: Insights on HIPAA and Cybersecurity 

    Managing a healthcare office is no small feat. It requires a unique blend of clinical knowledge, business acumen, and interpersonal skills. Debi Carr, CEO of DK Carr & Associates and a veteran with over 25 years in office management, shares invaluable insights and tips that can help any dental office manager thrive.  Stay Informed About…

  • Navigating the Storm: Lessons from the Change Healthcare Breach and the Vital Role of DK Carr & Associates

    Navigating the Storm: Lessons from the Change Healthcare Breach and the Vital Role of DK Carr & Associates

    The recent cyberattack on Change Healthcare, a major provider of healthcare technology services, highlights the growing threats facing the healthcare industry. The breach involved the use of stolen credentials to access the company’s systems, and despite ongoing efforts, the full extent of data compromise remains under investigation. The breach has disrupted services significantly, affecting medical…

  • FBI Alerts the ADA and AAOMS!

    FBI Alerts the ADA and AAOMS!

    Recently the FBI sent an alert to the American Dental Association (ADA) and the American Association of Oral and Maxillofacial Surgeons (AAOMS) of a credible cyber threat targeting practices. The May 6, 2024 alert, indicated that practices of Oral and Maxillofacial Surgery as well as other dental and specialty practices. Hackers are using a form…

  • Through HIPAA Security Rule Part 1

    Through HIPAA Security Rule Part 1

    § 164.306 Security standards: General rules. (a) General requirements. Covered entities must do the following: (1) Ensure the confidentiality, integrity, and availability of all electronic protected health information the covered entity creates, receives, maintains, or transmits. (2) Protect against any anticipated threats or hazards to the security or integrity of such information. (3) Protect against…

  • Patient Data Leaked 

    Recently, we had a practice contact us as one of their vendors had been hit with a ransom attack which also encrypted the devices within their practice. The vendor told the doctor that he did not need to take any action as the vendor was going to pay the ransom, get the encryption key, and…

  • OCR Enforcement from a Phishing Attack

    OCR Enforcement from a Phishing Attack

    OCR is the Office of Civil Rights and is the enforcement department that oversees the Health Insurance Portability and Accountability Act (HIPAA).   On December 7, 2023, OCR announced the first settlement against a healthcare entity where the breach was the result of a phishing attack which led to a ransomware attack.   Phishing or malicious email…

  • Nothing Lasts Forever

    Nothing lasts forever, especially when talking about technology. In less than 24 short months, Windows 10 will reach its end of life. This means that practices using Windows 10 may no longer be HIPAA compliant.   Microsoft currently sends security updates at least weekly and, on some occasions, more frequently, especially when a zero-day vulnerability has…