POS System Pwnage

Perhaps there have been bigger breaches, but the Target breach in late-2013 certainly seems to set off a firestorm. There are literally thousands of new online articles and posts everyday covering the event – the who, what, where, when, and especially the how and “what now” aspects of the case – and we’re certainly not done with it.

> Read More

HIEs Prepare for Flood of Patient Data, Demanding Privacy Mandates

As health information exchanges (HIEs) prepare for more rigorous data exchange requirements under Stage 2 of the “meaningful use” mandates from Centers of Medicare and Medicaid Services (CMS), they must also be prepared to take more rigorous steps to protect patient privacy and security.

Under the Health Information Technology for Economic and Clinical Health (HITECH) Act,

> Read More

Uncle Sam Has Yet Another Data Protection Bill

The latest attempt at creating a US Federal data protection / data breach notification law was recently introduced in the Senate. The “Data Security and Breach Notification Act of 2012” (S.3333) was submitted by Sen. Pat Toomey (R-PA) with the support of Sens. Olympia Snowe (R-ME), Jim DeMint (R-SC), Roy Blunt (R-MO) and Dean Heller (R-NV).

> Read More

Healthcare 2.0? The Security Skinny on Obama’s Stimulus Package

On Tuesday February 17th, President Obama signed the economic stimulus package that carves out $19B for modernizing health information systems.  The transition from paper to electronic or e-records in the healthcare industry has been happening for some time.  Although in small numbers, the process has been slow to ramp up based on technology considerations and the know-how needed by the organizations’ staff to work the new systems.

> Read More