The HIPAA E-Tool

UnitedHealth Group is Back in the Spotlight The UnitedHealth Group is facing questions from Congress about whether its cybersecurity practices adequately protect patient information.

UnitedHealth Group faces Senators' questions (again) about its failures to protect #patientprivacy. #HIPAAcompliance #HIPAASecurityRule thehipaaetool.com/unitedhealth...

Jury Found Meta Violated Privacy of Flo Health Users A jury decided that Meta violated California privacy law by using consumers' private health information for commercial purposes without consent.

#Meta violated consumer privacy, according to a jury verdict in a federal class action lawsuit. Flo Health and Google, also defendants in the case, settled before the case was decided. thehipaaetool.com/jury-found-m...

Beware of Alarming Healthcare Fraud Risks High-pressure tactics are fueling healthcare fraud attacks on patients and providers. Learn how to recognize and fight back against cybercrime.

Healthcare fraud is on the rise, warns the FBI. Patients and providers should remain vigilant and learn how to fight back. thehipaaetool.com/fbi-warns-of...

Texas Judge Vacates HIPAA Reproductive Health Rule The HIPAA reproductive health rule, which strengthened privacy related to reproductive health, has been vacated. The decision applies nationwide.

One judge, one decision, vacates the 2024 #HIPAA Reproductive Health modifications to the Privacy Rule. Effective immediately, nationwide, as of June 28, 2025. thehipaaetool.com/judge-vacate...

HIPAA's Reproductive Health Rule Is Vacated Nationally | Insights | Holland & Knight

HIPAA's #PrivacyRule changes protecting reproductive rights have been vacated nationally by a Federal District court in Texas. #privacyrights #reproductiverights
www.hklaw.com/en/insights/...

Password Leak: What We Know About the Massive 2025 Data Breach In a stunning revelation that has shocked cybersecurity circles, researchers have warned of one of the largest data breach in history

Today is a good day to change your passwords, especially on major platforms like banks, investments, insurance, and healthcare. www.merca20.com/password-lea...

HHS Names New Director for HIPAA Enforcement Agency The U.S. Department of Health and Human Services has named Paula Stannard to lead its HIPAA enforcement agency - the Office for Civil Rights. Stannard was a legal

Paula Stannard has no learning curve, with a deep background in health privacy and security, and a thorough knowledge of #HIPAA www.healthcareinfosecurity.com/hhs-names-ne....

Critical Considerations for Communication in Cyber Incidents With highly sensitive information and disruptions to medical care at stake during cyberattacks on healthcare organizations, it's vital for these entities to

When a cyber incident hits, your response is only as strong as your communication. 🔒
In "Critical Considerations for Communication in Cyber Incidents," Marianne Kolbasuk McGee shares expert guidance on building a proactive, transparent communication strategy.
Read the full article: bit.ly/437aB1G

ALN Medical Management Reveals HIPAA Breach Risks Revenue cycle management firms in healthcare are key targets for cybercriminals looking for large troves of valuable patient information.

Large third-party vendors in healthcare face significant risks when they fail to safeguard patient privacy. thehipaaetool.com/aln-medical-...

Two #HIPAA settlements were announced this week. Comstar LLC, a billing and collections vendor, will pay $75K to OCR. BayCare Health System, a Florida provider, will pay $800K. A key issue in both cases was the failure to conduct a HIPAA risk analysis, alongside other compliance lapses.

Small Healthcare Providers Face HIPAA Enforcement The eighth HIPAA settlement from the Trump administration demonstrates that enforcement is robust and that small providers are not exempt.

#HIPAA enforcement is going strong in 2025. In the eighth HIPAA settlement announced by HHS under the Trump administration, Vision Upright MRI, a small California provider, will pay $5,000 and improve its HIPAA compliance. thehipaaetool.com/small-health...

Ransomware attack triggers ‘system-wide’ tech outage at large network of medical centers | CNN Politics A ransomware attack has triggered a “system-wide technology outage” at a network of over a dozen medical centers in Ohio, causing the cancellation of elective inpatient and outpatient procedures, acco...

Ohio hospital system is suffering a system-wide outage due to a ransomware attack. www.cnn.com/2025/05/20/p...

Final HIPAA rule brings clarity—and challenges—for reproductive health data.

In "Navigating HIPAA's Reproductive Healthcare Data Privacy Rule," Jill Mckeon shares practical insights to help organizations reduce risk and maintain compliance.
bit.ly/44xKkvZ

Kelly Benefits Breach Number Skyrockets to Over 400K A data breach at third-party administrator Kelly Benefits has affected hundreds of thousands of individual members and customers of large insurers.

A data breach at third-party administrator Kelly Benefits has affected hundreds of thousands of individual members and customers of large insurers. thehipaaetool.com/kelly-benefi...

🚨 Compliance Checkpoint Answer:
.
.
.
.
.
FALSE!

HIPAA doesn’t just apply to medical organizations—it also applies to business associates handling protected health information.

Blue Shield of California and Yale New Haven Health Breaches Website tracking at Blue Shield of California and a hack at Yale New Haven Health caused breaches that affected over 10 million patients.

A pixel tracking breach in healthcare in California and a cyberattack in Connecticut resulted in two breaches affecting over 10 million people. thehipaaetool.com/blue-shield-...

Two More HIPAA Settlements Under the Trump Administration - The HIPAA E-Tool Since February 20, HHS has announced seven HIPAA settlements, highlighting the need for strong HIPAA compliance, including a risk analysis.

Amidst the changes and chaos in Washington, #HIPAA enforcement continues much like before. Seven HIPAA settlements have been announced since February; the two most recent were last week against a New York neurology practice and a California health network. thehipaaetool.com/two-more-hip...

HIPAA Enforcement Continues Under Trump The latest HIPAA enforcement action from the Trump administration underscores the importance of a thorough HIPAA risk analysis every year.

While much has changed, #HIPAA enforcement is going strong. thehipaaetool.com/hipaa-enforc...

Ransomware Attack on DaVita Threatens Patient Care A ransomware attack on DaVita, the second-largest dialysis provider in the U.S., threatens the quality of patient care and safety.

Five days ago, a #ransomware attack hit DaVita, Inc., the second-largest dialysis provider in the U.S. A reminder that large healthcare providers are lucrative targets for cybercriminals seeking valuable medical identity information. thehipaaetool.com/ransomware-a...

HIPAA Compliance Training and Risk Assessment Software | The HIPAA E-Tool The HIPAA E-Tool software walks you step-by-step through the HIPAA Rules to protect patient privacy. Contact us and Get a free demo now!

The HIPAA E-Tool® helps healthcare providers and business associates simplify risk management, workforce training, and breach notifications.

Our reliable solutions assist in meeting HIPAA requirements with cost-effective, in-house alternatives.

Let's work together for compliance: bit.ly/3WKmh87

Just what we need. 😒

January 2025 Healthcare Data Breach Report https://www.hipaajournal.com/january-2025-healthcare-data-breach-report/ #HIPAA

Chord Dental Slammed With Lawsuits After Hack Affects 173,400 Chord Dental faces multiple class action lawsuits and HIPAA enforcement after a major data breach affected patients across six states.

The #HIPAASecurityRule does double duty - it safeguards patient data and shields healthcare organizations from breach of privacy lawsuits. thehipaaetool.com/cyberattack-...

How benchmarking data can improve medical device security | TechTarget Learn about MDIC's efforts to increase benchmarking data availability to better understand and alleviate top medical device security challenges.

Today, we shed light on improving medical device security through benchmarking data. 🔒

Learn how regulators, manufacturers, and healthcare organizations collaborate to enhance security standards, despite the ongoing challenges.

Continue reading here: bit.ly/3XMkr7d

HIPAA Audits 2025: A Step Toward Stronger Compliance HIPAA audits are designed to help regulated entities sharpen their Security Rule compliance. Follow our guidance on audit prep to prepare.

#Cybersecurity in healthcare still matters. In the face of rising threats of hacking and ransomware, the 2024-2025 #HIPAA audit program is designed to help regulated entities sharpen their compliance. We can help you get ready. thehipaaetool.com/hipaa-audits...

UPDATE: AHA and Health-ISAC Threat Advisory: FBI Advises No Specific Credible Threat Targeting Hospitals | AHA Today, the FBI advised that, after an extensive investigation and intelligence review, they have not identified any specific credible threat targeted against hospitals in any U.S. city.

Last week, an alarming social media post describing a potential terrorist threat against U.S. hospitals raised alarms. After investigation and intel analysis, the FBI concluded that the threat was not credible. www.aha.org/special-bull...

HHS announced restructuring and workforce reductions. A new Assistant Secretary for Enforcement will oversee the Departmental Appeals Board (DAB), the Office of Medicare Hearings and Appeal (OMHA), and the Office for Civil Rights (OCR), which enforces #HIPAA. www.hhs.gov/about/news/h...

Beware the Rhysida Ransomware Group Threatening Healthcare The Rhysida ransomware group has repeatedly attacked healthcare organizations for over two years, profiting from selling sensitive patient data.

🚨Rhysida Ransomware Strikes Healthcare

Two providers—Sunflower Medical Group (KS) & Community Care Alliance (RI)—were hacked, exposing over 336,000 patient records now for sale on the dark web.

Costly legal battles & service disruptions follow. HIPAA compliance is your best defense: bit.ly/4kDvp8V

Trump nominates Sean Plankey to run top US cyber agency Sean Plankey, who served in cybersecurity roles in the first Trump administration, has been officially nominated to run the Cybersecurity and Infrastructure Security Agency (CISA), according to postin...

Progress on cybersecurity. Trump nominates Sean Plankey to run CISA. therecord.media/plankey-nomi...

We prioritize simplifying compliance, making it easier for you to navigate the complexities of HIPAA rules.

With interactive risk management tools and customizable resources, achieving compliance excellence has never been more accessible.

More here: bit.ly/3WKmh87