The HITRUST Certification Steps

March 28, 2024

A HITRUST certification is a powerful way healthcare organizations can show their commitment to protecting patients’ sensitive data. HITRUST is…

Read More

Updated Guidance for Web Tracker Use and HIPAA Compliance

March 21, 2024

In December 2022, the Department of Health and Human Services (HHS) Office of Civil Rights (OCR) issued a bulletin warning…

Read More

Mitigating Internal Security Threats in Healthcare

February 14, 2024

Over the past several years healthcare organizations have received warnings from the Department of Health and Human Services (HHS), the…

Read More

HITRUST Policy and Procedure Documentation Requirements

February 7, 2024

If you are considering a HITRUST Risk-Based, 2-year (r2) Assessment one of the areas you will need to evaluate is…

Read More

AHA Warns of Attacks Targeting Hospital IT Help Desks

January 30, 2024

Hospital IT help desks have been the target of sophisticated social engineering schemes designed to enable payment fraud according to…

Read More

HHS Reveals Strategy to Improve Healthcare Cybersecurity

January 9, 2024

The healthcare sector continues to be a top target for cyber-attacks. The Department of Health and Human Services (HHS) Office…

Read More

First Ever Phishing Settlement Cost Medical Group $480k

December 12, 2023

Lafourche Medical Group will pay $480,000 to the Department of Health and Human Services (HHS), Office for Civil Rights (OCR)…

Read More

CISA Releases Healthcare Mitigation Guide

December 6, 2023

Healthcare continues to be under attack from cyber threats. According to the Institute for Security and Technology, at least 299…

Read More

Is My Vendor REALLY HIPAA-Compliant?

November 2, 2023

Healthcare organizations continue to grow more reliant on the use of third-party vendors that help them deliver quality care and…

Read More

HITRUST Updates October 2023

October 19, 2023

HITRUST updates the CSF, its control framework, at least annually to help ensure the CSF addresses current cybersecurity risks. On…

Read More

Finding a credible expert with the appropriate background, expertise, and credentials can be difficult. CompliancePoint is here to help.