Knowledge is the best attack deterrent, so check out our cyber security updates
24By7Security, Inc.

Healthcare Cybersecurity Newsletter - March 28, 2018

Understanding the HIPAA Security Rule: Part I – HIPAA Physical Safeguards

HIPAA covers a broad scope of healthcare related items, and its Security Rule specifically sets forth standards concerning the safety of electronic Protected Health Information. The Security Rule can be broken down into three key areas of implementation: Physical Safeguards, Technical Safeguards, and Administrative Safeguards.  The HIPAA Security Rule defines Physical Safeguards as “physical measures, policies, and procedures to protect a covered entity’s electronic information systems and related buildings from natural and environmental hazards, and unauthorized intrusion”. Read here Part I of blog series where we discuss the basics regarding HIPAA Physical Safeguards, and how they relate to ePHI.


Understanding the HIPAA Security Rule: Part II – Technical Safeguards

In Part II of blog series regarding the HIPAA Security rule, we will see the specific standards surrounding HIPAA Technical Safeguards of the HIPAA Security Rule. The HIPAA Security Rule defines Technical Safeguards as “the technology and the policy and procedures for its use that protect electronic protected health information and control access to it”. Find out here safeguards that provide a detailed overview of access and protection of ePHI.


HIPAA Training is not HIPAA Compliance

We hear from so many doctors’ and dentists’ offices that they are “HIPAA-compliant” because they have completed the required annual HIPAA training for their staff.  FALSE! HIPAA Training is not HIPAA Compliance. HIPAA Training is only one of the components of HIPAA Compliance – thinking otherwise could lead to a false sense of security. HIPAA law consists of various requirements in the areas of security and privacy, use and disclosure of PHI (protected health information) and in breach notification rules. Find out here minimum steps needed for HIPAA Compliance!


Is it a HIPAA Violation to Email Patient Names?

Is it a HIPAA violation to email patient names and other protected health information? In answer to this and similar questions, read here to help clarify how HIPAA relates to email and what are some of the precautions HIPAA covered entities and healthcare employees should take to ensure compliance when using email to send electronic protected health information.


Healthcare Data Breach Statistics

This healthcare data breach statistics is compiled from October 2009 when the Department of Health and Human Services’ Office for Civil Rights first started publishing summaries of healthcare data breaches on its website, and it includes data breaches of 500 or more records as smaller breaches are not published by OCR. It clearly shows that:

  • there has been an upward trend in data breaches over the past 9 years with 2017 seeing more data breaches reported than any other year, and
  • there has been notable changes over the years in the main causes of breaches.  

Take the Cyber Hygiene Pledge and stay Cyber Healthy!

The human being is still the weakest link for security, and therefore good Cyber Hygiene practices to stay Cyber healthy are important. Count, Control, Configure, Patch and Repeat! Call 24By7Security, Inc for a security risk assessment today at (844)-55-CYBER or visit our website at!

Upcoming Events!

HackMiamiCon 6 May 18 @ 8:00 am - May 22 @ 5:00 pm

Michael Brown of 24By7Security will be speaking at HackMiamiCon 6 which will be held from May 18 – 22, 2018 at the Deauville Beach Resort in Miami.

More Information...

Facebook Twitter Linkedin Youtube Google Instagram

About us

24By7Security, Inc. is a full service Cybersecurity strategy, implementation, operations and training firm.  We provide Cybersecurity and compliance related services across all functions of the enterprise. Our services include CFPB/DFA, FIPA, FERPA, GLBA, HIPAA, PCI, SOX, and others.

Visit Our Website

24By7Security, Inc.

4613 N. University Drive, Suite #267

Coral Springs, Fl - 33067

(844) 55-CYBER