Before the Ransomware Damage is Done

How a single ransomware attack destroyed a thriving medical business and how to avoid it happening to you or your clients. I was sitting at a local breakfast spot near my home in Michigan one recent morning with a friend. I was discussing my work (online training for...

Does Your Breach Response Plan Include Notification?

Remain Calm, Remain Honest – and Remain in Business Avoiding the inevitable does not make it go away. Healthcare patients choose a provider based on the quality of care. In addition to that, the public will generally assume that their private information is...

A Phishing Epidemic: Constant Stream of Reports

Since at least the beginning of the summer, it seems as though no day can go by without another phishing incident being reported by a healthcare entity. The reports are almost always the same too. After some period of time (usually not the same day), unauthorized...

Securing Data Using the “Duty of Care” Standard

The healthcare industry has a huge responsibility when it comes to information security and protecting sensitive PHI while abiding by its “duty of care” principles. However, the industry continues to suffer large data breaches despite multiple federal regulations that...

A Cautionary Tale of Celebrity Breach

The company I work with, 4MedPlus, is based in the beautiful city of Chicago, Illinois with a mission to provide critical compliance education. Many courses are dedicated to the subject of HIPAA and security in one form or another. We regularly present workshops,...