Knowledge is the best attack deterrent, so check out our cyber security updates
24By7Security, Inc.

Healthcare Cybersecurity Biweekly Newsletter - October 4, 2017

Healthcare Industry Tops List for Class Action Data Breach Lawsuits

In 2016, the healthcare industry faced the most class-action data breach lawsuits, according to a new analysis of data breach lawsuits by the law firm, Bryan Cave, LLP. To produce the 2017 data breach litigation report, they conducted a comprehensive review and analysis of all class action lawsuits filed by victims of data security breaches in 2016. The report confirms that the healthcare industry reported the most data breaches of any industry – 70% of the total – yet only 34% of class action lawsuits name healthcare organizations as the defendants. Healthcare was the leading industry for class action data breach lawsuits (26 complaints), closely followed by email providers with 33%. 


Reviewing OCR HIPAA Guidance to Maintain Compliance

OCR’s Senior Advisor for HIPAA Compliance and Enforcement Iliana Peters presented key reminders on OCR HIPAA guidance for providers as they work to create strong cybersecurity measures. Some keypoints are:

  1. CE should regularly review OCR HIPAA guidance and ensure that they remain compliant, even as they add new technologies into the daily workflow.
  2. CE must review their policies and procedures, and make necessary updates as needed. This includes having an updated risk assessment, proper employee training, and documented business associate relationships.
  3. CE should know the importance of vendor risk management, business associate agreements, and the importance of ongoing risk assessments.

Vermont Attorney General Agrees to a $264,000 SAManage USA Data Breach Settlement

In 2016, SAManage USA, a technology company that provides business support services, failed to secure an Excel spreadsheet relating to the state health exchange, Vermont Health Connect. Vermont Attorney General said a Vermont resident found the spreadsheet via the search engine listings and reported the breach to his office, triggering an investigation. The Vermont Attorney General’s office contacted AWS and Amazon in turn contacted SAManage USA to alert the firm to the breach. However, while an engineer was alerted to the SAManage USA data breach, the incident was not communicated to the appropriate personnel within the company. SAManage USA has agreed to a $264,000 settlement to resolve the case and will adopt a robust corrective action plan, which includes implementing a comprehensive information security program to prevent further privacy breaches.


National Cyber Security Awareness Month 2017

As hacks, data breaches, and other cyber-enabled crime become increasingly commonplace, this year’s National Cyber Security Awareness Month is an important reminder of the need to take steps to protect yourself and your family when using the Internet. Launched in 2004 by the Department of Homeland Security and the National Cyber Security Alliance, the annual campaign held every October is designed to help the public stay safe online and to increase national resiliency in the event of a cyber incident. During the first week of National Cyber Security Awareness Month, the NCSA will be promoting its “STOP. THINK. CONNECT.” security awareness campaign. The campaign makes available more than 140 online resources that can be used by U.S. citizens to keep themselves secure and by businesses to improve security awareness of the workforce.


Failing To Update Compliance Plans May Be Costly

If you are a provider of healthcare services, you need a compliance plan. A compliance plan is a written document that details your practice’s policies, procedures, and operations. While many providers are aware of the importance of having an established compliance plan, many do not routinely review or update their compliance documents to reflect changes in their practice and operations. A compliance plan provides detailed guidance to practice personnel and works to ensure their actions are in accordance with relevant laws and best practices. Failing to maintain a comprehensive compliance plan may put a practice at risk of violating laws or contractual arrangements.


24By7Security Risk Assessment

In this world of rising cyber crime, have you assessed your security levels? Are you safe if or when you suffer a breach? Call 24By7Security, Inc for a security risk assessment today at (844)-55-CYBER or visit our website at !

Upcoming Events!

ISSA 2017 International Conference - Oct 9 - 11, 2017

Michael Brown of 24By7Security, Inc. will be speaking on Cyber Resilience at the ISSA 2017 International Conference being hosted at the Sheraton Hotel and Marina in San Diego, California.

More Information....

SWTG Tech Conference and Expo - October 11 @ 10:00 am - 5:00 pm

24By7Security will be sponsoring and exhibiting at the Sinnott Wolach Technology Group (SWTG) Tech Conference and Expo on October 11, 2017.  

More Information....

Cybersecurity Day at NSU - October 19 @ 8:00 am - 1:00 pm

24By7Security is pleased to sponsor and present at Cybersecurity Day annual event at Nova Southeastern University – with a day of Cybersecurity discussions with talented high school students.

More Information....

Georgia ISSA Atlanta Conference - Nov 15, 2017 @ 8:00 am

24By7Security is pleased to sponsor Atlanta’s premier security conference, “Paradigm of Dependable Security” and will be exhibiting and networking there.

More Information....

Data Connectors Fort Lauderdale Tech-Security Conference - Dec 14, 2017

24By7Security is pleased to sponsor the Data Connectors Fort Lauderdale Tech-Security Conference at Fort Lauderdale, Florida.

More Information....

Facebook Twitter Linkedin Youtube Google Instagram

About us

24By7Security, Inc. is a full service Cybersecurity strategy, implementation, operations and training firm.  We provide Cybersecurity and compliance related services across all functions of the enterprise. Our services include CFPB/DFA, FIPA, FERPA, GLBA, HIPAA, PCI, SOX, and others.

Visit Our Website
Facebook Twitter Linkedin Youtube Google Instagram

24By7Security, Inc.

4613 N. University Drive, Suite #267

Coral Springs, Fl - 33067

(844) 55-CYBER