In today's environment of data breaches, identity theft, fraud, and increasing connectivity, HIPAA Privacy and Security rules are a responsibility to your patients and your clients. HIPAA isn't about compliance, it's about patient care.
…
continue reading
1
The Medcurity Podcast: HIPAA Compliance | Security | Technology | Healthcare
Medcurity: HIPAA Compliance
Healthcare is complicated. Joe Gellatly and Amanda Hepper are here to help, guiding us through the biggest issues and updates in healthcare security and compliance. From HIPAA Risk Assessments to the dark web, learn what factors are affecting the security of healthcare information and how to protect your data. Tune in for news, advice, and more.
…
continue reading
HIPAA compliance is complicated, confusing and easy to get wrong. Violations, data breaches and ransomware attacks are everywhere in healthcare. HIPAA Critical brings interviews with leaders in cybersecurity, InfoSec, healthcare, and compliance straight to you. Each 30-minute episode is designed to keep you informed and entertained. A new episode is released on the first three Wednesdays of every month.
…
continue reading
https://petronellatech.com and our sponsor at https://compliancearmor.com present Cybersecurity and Compliance with Craig Petronella Podcast. Learn the latest on the CMMC 2.0, DFARS, NIST, HIPAA, GDPR, ISO27001 and more. Learn about the most current IT security threats in ransomware, phishing, business email compromise, cybercrime tactics, cyberheist schemes, and social engineering scams, as well as tips and tricks from leading professionals to help you prevent hackers from penetrating your ...
…
continue reading
1
Phishing Fails, SRA Woes and the OCR Hammer - Ep 489
51:16
51:16
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
51:16
It’s the final countdown, folks—the last episode of the year! And OCR decided to end 2024 with a bang, handing out settlements like candy at a Christmas parade. But here’s the twist: the candy comes with a price tag, and it’s not cheap. This episode hones in on OCR’s new enforcement initiative targeting incomplete and outdated risk analyses. So, be…
…
continue reading
There’s a new HIPAA Rule that went into effect on Monday, and it’s something every healthcare professional needs to know. In this episode, we’re talking about new restrictions on sharing patient data, the introduction of an attestation requirement, and what these changes mean for healthcare organizations. Learn more about Medcurity here: https://me…
…
continue reading
1
2024 Holiday Blooper Show
13:51
13:51
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
13:51
Welcome to the 2024 Blooper Show, where we prove once again that even after nine years, perfection is overrated and laughter is mandatory! Big shoutout to Bojan, our long suffering audio engineer extraordinaire, who turns our chaos into coherence. And of course, we can’t forget you—our amazing listeners—who tune in each week, send us your thoughts …
…
continue reading
HIPAA compliance isn’t always where you expect it. Online forms, patient reviews, and digital apps can all create potential risks for HIPAA incidents. In this episode, we’re uncovering hidden compliance pitfalls and giving you practical tips to safeguard patient data in these overlooked areas. Learn more about Medcurity here: https://medcurity.com …
…
continue reading
1
Incident Panic to Plan for SMB Execs - Ep 488
50:09
50:09
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
50:09
Cybersecurity incidents can feel like a punch in the gut, but with the right plan, you can roll with the hits instead of flailing in panic. In this episode, we’re diving into executive strategies for tackling the unexpected, from building response teams to keeping business operations afloat when chaos strikes. Along the way, we also cover a recent …
…
continue reading
1
Access Delayed, Ransom Paid, Cyber Aid Conveyed - Ep 487
54:46
54:46
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
54:46
Is your healthcare organization ready for a triple threat, or are you playing a risky game of cybersecurity roulette with delayed access, ransomware demands, and a missing incident response plan? Today, we explore three tales in healthcare that are equal parts cautionary and compelling. We kick things off with the Healthcare and Public Health Secto…
…
continue reading
Your employees are your first line of defense against cybersecurity threats and HIPAA violations. In this episode, we’re talking about practical ways to train your staff, create a compliance-first mindset, and keep patient data secure. Learn more about Medcurity here: https://medcurity.com #Healthcare #Cybersecurity #Compliance #HIPAA…
…
continue reading
1
Thankful It Is Not Me - Ep 486
38:55
38:55
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
38:55
Feeling thankful this season? Us too—especially when it comes to dodging data disasters! In this episode, Donna and David dive headfirst into some eyebrow-raising cybersecurity tales, from job application breaches exposing sensitive information to the ever-creepy risks of unsecured IoT devices (yes, even your vacuum might be plotting against you). …
…
continue reading
Healthcare organizations are facing increased scrutiny as the government ramps up enforcement of Security Risk Analyses (SRAs). Many are still using inadequate methods, leaving gaps in compliance and exposing themselves to penalties. Completing a detailed, comprehensive SRA is critical—watch the video to learn how to protect your organization and s…
…
continue reading
1
First SRA Violation Settlement - Ep 485
45:20
45:20
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
45:20
Doing a half-baked risk analysis is like locking your front door but leaving all the windows wide open. What’s the point? Today, we dive into the first-ever Security Risk Assessment (SRA) violation settlement—a juicy topic for compliance nerds and healthcare pros alike. We’re talking ransomware, compliance checklists (the kind you actually need), a…
…
continue reading
Healthcare organizations face growing pressure to strengthen security measures, as highlighted in the recent HHS and NIST conference. What does this mean for your organization, and what steps should you take now? Get the latest insights and practical tips in the newest Medcurity Podcast. Learn more about Medcurity here: https://medcurity.com #Healt…
…
continue reading
1
OCR NIST Part 2 - Ep 484
1:01:37
1:01:37
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
1:01:37
Buckle up for Part 2 of our breakdown on the HHS OCR NIST healthcare security conference - because, yes, 16 hours of deep dives into AI, HIPAA compliance, and cybersecurity priorities can’t be tackled in just one episode! From wild projections about AI’s future in healthcare to OCR’s “tough love” on compliance standards, this episode peels back the…
…
continue reading
With the end of the year approaching, now’s the time to take a close look at any potential vulnerabilities within your organization. An annual Security Risk Analysis demonstrates your commitment to data and system protection, while also reassuring customers and meeting compliance standards. Tune in to the latest episode of The Medcurity Podcast to …
…
continue reading
1
OCR NIST Conference Part 1 - Ep 483
57:43
57:43
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
57:43
Buckle up, folks! Today, Donna and David are here with Part 1 of their deep dive into the recent HHS OCR NIST healthcare security virtual conference, and they're spilling all the cyber-tea. With experts from HHS, OCR, NIST, FTC, and FDA presenting, this conference covered a ton. From AI-powered hackers and QR code scams to unpatched medical devices…
…
continue reading
Securing your vendor relationships is necessary for protecting patient data under HIPAA. Third-party services can introduce vulnerabilities into your system. In this episode, we’ll show you how to close those gaps. Ready to safeguard your network and secure patient trust? Hit play and let’s get started. Learn more about Medcurity here: https://medc…
…
continue reading
1
Sell Me This Pen - Ep 482
53:56
53:56
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
53:56
Ever heard someone say you need a pen test but then start wondering if they meant a pen from a spy movie? There typically is a lot of confusion between penetration testing and vulnerability assessments—a common mix-up with big consequences for your cybersecurity game. We will walk through different types of pen tests, explain how they help you spot…
…
continue reading
1
Growing Cybersecurity Threats in Healthcare: What to Prepare for in 2025 | Medcurity Live 068
4:36
As we wrap up Cybersecurity Awareness Month, we are looking to the future. What lies beyond 2024 and how can you stay ahead? Tune in to learn more! Learn more about Medcurity here: https://medcurity.com #Healthcare #Cybersecurity #Compliance #HIPAA
…
continue reading
For Cybersecurity Awareness Month, we’re focusing on tactics commonly used by hackers today. Train your staff on phishing, quishing, vishing, and more to stay safe in today’s digital world. Learn more about Medcurity here: https://medcurity.com #Healthcare #Cybersecurity #Compliance #HIPAA
…
continue reading
1
Gumming Up the Works: Dental Record Request Nightmare - Ep 481
52:24
52:24
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
52:24
Ever had a root canal that felt less painful than dealing with bureaucracy? Well, buckle up, because in this episode, we sink our teeth into the 50th patient right of access enforcement action under HIPAA. That’s right—50 cases since 2019, and somehow, this one involving Dr. Gumb (yes, really) and a dental records dispute is the most absurd of the …
…
continue reading
1
Ransomware, Recall, and Regulations - Ep 480
51:27
51:27
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
51:27
Today we tackle the trifecta of cybersecurity headaches: Microsoft’s awkwardly ambitious recall feature, the looming HISAA regulations (because HIPAA wasn’t enough), and a juicy enforcement action following a ransomware attack. We’ll break down how Microsoft’s recall reboot went from intrusive default to opt-in relief, why HISAA could mean mandator…
…
continue reading
Your organization’s biggest risk may come from within. In this episode, we discuss how insider breaches—whether malicious or accidental—can be just as devastating as external attacks, because insiders already have access to critical systems. Learn more about Medcurity here: https://medcurity.com #Healthcare #Cybersecurity #Compliance #HIPAA…
…
continue reading
1
Browsers & Breaches - Ep 479
47:46
47:46
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
47:46
Leaving your web browser open with 25 tabs is the digital version of leaving your front door unlocked? Whether it's for email, work docs, shopping, or watching cat videos, your browser is the gateway to, well, everything. But as much as we depend on them, so do hackers. From credential theft to sneaky phishing attacks, cybercriminals are finding cl…
…
continue reading
What is Zero Trust in cybersecurity? For this Cybersecurity Awareness Month, we’ll be going over several key elements of a good cybersecurity strategy, and today’s topic covers the Zero Trust method. Learn more about Medcurity here: https://medcurity.com #Healthcare #Cybersecurity #Compliance #HIPAA
…
continue reading
1
Halloween Comes Early This Year - Ep 478
46:38
46:38
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
46:38
Boo! 🎃 Halloween may not be here yet, but we’re kicking off the spooky vibes early! Donna and David dive into the eerie world of cybersecurity, where the tricks are plentiful, and the treats are hard to find. From scary ransomware attacks to the horrifying reality of business email compromises, the internet is scarier than a haunted house with no e…
…
continue reading
In this episode of The Medcurity Podcast, we’re talking about building an Incident Response Plan, why it matters, and how often you should review it to stay ahead of threats. Plus, we share practical tips to make sure your plan is ready when you need it most. Learn more about Medcurity here: https://medcurity.com #Healthcare #Cybersecurity #Complia…
…
continue reading
1
Avoid These 5 Healthcare Marketing Mistakes - Ep 477
52:45
52:45
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
52:45
Healthcare marketing is tricky enough without tripping over the big pitfalls that could leave you tangled up in HIPAA violations or a patient privacy disaster. Today we break down five common marketing mistakes you definitely want to steer clear of. From misinterpreting HIPAA rules to guarding patient data like it’s your grandma’s secret cookie rec…
…
continue reading
How should Protected Health Information (PHI) be disposed of? In order to avoid stolen data and/or HIPAA violations, learn how to properly dispose of PHI, follow regulations, and keep your staff updated on effective disposal methods. Learn more about Medcurity here: https://medcurity.com #Healthcare #Cybersecurity #Compliance #HIPAA…
…
continue reading
1
You Have Been Warned - Ep 476
45:13
45:13
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
45:13
Do you feel like cyberattacks are the world’s worst game of whack-a-mole? No matter how many you smack down, ten more pop up— and there’s no sign of it slowing anytime soon and neither is the confusion over who’s responsible when your data gets caught in the crossfire. If your supply chain and your own security safeguards aren't locked down, you mi…
…
continue reading
What happens when a device with sensitive information is lost or stolen? In this episode, we break down how HIPAA factors in, what steps to take if it happens, and how to stay ahead with preventive measures to protect your data and stay compliant. Learn more about Medcurity here: https://medcurity.com #Healthcare #Cybersecurity #Compliance #HIPAA…
…
continue reading
1
Check Your Facility Access Controls - Ep 475
52:11
52:11
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
52:11
Ever left your front door unlocked, thinking it’s no big deal? Well, that’s what happens when you forget about facility access controls – and the consequences can be far worse than a missing TV! Today, we dive deep into a topic that often gets overlooked but is critical to any organization’s security – facility access controls. Whether it's ensurin…
…
continue reading
In this episode of The Medcurity Podcast, we take a closer look at the HIPAA Omnibus Rule - what it means, why it’s important, and how it impacts your practice. Gain valuable insights, expand your knowledge, and stay ahead in the world of compliance. Learn more about Medcurity here: https://medcurity.com #Healthcare #Cybersecurity #Compliance #HIPA…
…
continue reading
1
Using Free CSAM Toolkit - Ep 474
42:40
42:40
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
42:40
It's that time of year again: Cybersecurity Awareness Month! We're diving into the world of cybersecurity like a hacker in a candy store—except we're here to keep the candy (your data) safe! We're breaking down how you can use the free CE Awareness Month toolkit to boost your cybersecurity game both in your business and at home. Whether you're an I…
…
continue reading
Is your social media activity HIPAA compliant? What can / can’t you post / respond to? Learn about social media standards when it comes to HIPAA compliance, and steps to take to make sure your activity on these platforms is not violating any HIPAA rules. Learn more about Medcurity here: https://medcurity.com #Healthcare #Cybersecurity #Compliance #…
…
continue reading
1
Yes You Are A Victim - Ep 473
52:29
52:29
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
52:29
Navigating the world of cybersecurity these days feels like walking through a minefield with clown shoes—are you stepping safely or just a step away from disaster? In this episode, we dive into the jaw-dropping National Public Data breach that's got everyone asking, "Am I a victim too?" Spoiler alert: the odds aren't in your favor. Then, we sift th…
…
continue reading
Cybersecurity can save your organization from a costly attack. In this episode, we explore how the right protections will help you save money in the long run by preventing costly incidents and keeping your practice compliant. Find out why cybersecurity is one of the smartest financial moves you can make. Learn more about Medcurity here: https://med…
…
continue reading
1
Show me your SBOM - Ep 472
37:51
37:51
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
37:51
In this episode, we're diving deep into the world of Software Bill of Materials (SBOM)—basically, the recipe for your software, minus the secret sauce. If you've ever wondered what's really under the hood of your favorite apps (or been caught off guard by a sneaky ingredient), this one's for you. We’re breaking down why you should care about SBOMs,…
…
continue reading
While cybersecurity grabs all the headlines, it’s easy to forget how important physical security is. In this episode of the Medcurity podcast, we focus on the tangible measures—access controls, surveillance systems, visitor management, and secure storage—that protect your facility’s most sensitive areas. Learn how to strengthen your physical defens…
…
continue reading
Navigating healthcare cybersecurity is like walking through a minefield—you never know which step could trigger the next explosion. In this episode, we’re diving headfirst into the bloody mess of ransomware attacks that have turned hospitals and blood banks into a logistical nightmare. Amidst the chaos, Health-ISAC and the American Hospital Associa…
…
continue reading
OCR audits are ramping up in 2024, and healthcare organizations need to be ready. In this episode of the Medcurity podcast, we discuss what these audits will focus on, including risk analysis, technology protections, and third-party management. We also share actionable steps to strengthen your compliance efforts and ensure you're prepared for the h…
…
continue reading
1
How Well Do You Know Remote Workers? - Ep 470
42:10
42:10
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
42:10
How well do you really know your remote workers? With remote work increasingly becoming the norm, the complexities of securing devices and monitoring access have skyrocketed. The challenges of providing robust security measures for an increasingly dispersed workforce are immense. Real-world examples like the KnowBe4 incident, where a remote worker …
…
continue reading
AI is being used to target your data. In this episode of the Medcurity podcast, we talk about the latest AI scams hitting the healthcare world. Discover how cybercriminals are using artificial intelligence to hack systems and steal sensitive info, and get practical tips to protect yourself. Learn more about Medcurity here: https://medcurity.com…
…
continue reading
1
CrowdStrike's Major Tech Outage - Ep 469
40:33
40:33
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
40:33
Ever had one of those days where everything just seems to crash and burn? Well, in this episode, we dive into a tech catastrophe that sent ripples across the digital landscape. Donna and David will unravel the chaos caused by CrowdStrike's major tech outage—a meltdown that wasn’t just an ordinary hiccup, but a vendor-of-a-vendor fiasco. From blue s…
…
continue reading
The Department of Health and Human Services and the FBI have issued a joint advisory warning healthcare providers about a targeted social engineering campaign. We break down what this means and how you can protect your organization in our latest episode of The Medcurity Podcast. Learn more about Medcurity here: https://medcurity.com…
…
continue reading
1
OCR Ransomware Settlement - Ep 468
37:48
37:48
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
37:48
Ever wondered how neglecting a cybersecurity risk analysis is like leaving your front door wide open in a sketchy neighborhood? Well, buckle up because today we dig into the latest OCR ransomware settlement involving Heritage Valley Health Systems and a laundry list of potential violations. From failing to conduct a thorough risk analysis to lackin…
…
continue reading
1
Just Because You Can Does NOT Mean You Should - Ep 467
46:01
46:01
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
46:01
In the HIPAA world, just because you can, doesn't mean you should – unless you’re keen on trading your business casual for prison orange. No one expects that a HIPAA violation will send them to jail, but there can be serious criminal penalties associated with HIPAA breaches, ranging from fines to imprisonment. Today, we will share real-life example…
…
continue reading
1
How Can SMBs Do SSO? - Ep 466
50:41
50:41
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
50:41
How can small and medium businesses (SMBs) tackle the complexities of single sign-on (SSO) and boost their password security? A recent study from CISA highlighted the lag in SSO adoption among SMBs and why basic security measures like SSO and multi-factor authentication (MFA) should be standard. Join us as we navigate through the maze of managing m…
…
continue reading
Ever wonder why staying vigilant in cybersecurity is like playing whack-a-mole? Let's dive into some wild stories that highlight the need to always be on the lookout! From hackers using legitimate websites to spread malware, to the humorous and slightly terrifying saga of employees using mouse jigglers to fake work, to cyberattacks from space, ther…
…
continue reading
1
Crawl Out Through The Fallout - Ep 464
51:00
51:00
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
51:00
What happens when healthcare giants falter in the face of cyber threats? Today, we dive into the critical need for better cybersecurity investments, continuous training and education and robust cybersecurity standards. We will explore the fallout from UHG’s cyber incident and break down three fiery letters from Congress demanding accountability and…
…
continue reading
1
Why Should Every Healthcare Organization Be Prioritizing Security Risk Analyses? | Medcurity Live 054
5:16
What is a Security Risk Analysis, why is it important, and how should you effectively conduct one? We address all of these questions in our latest episode of The Medcurity Podcast. Learn more about Medcurity here: https://medcurity.com
…
continue reading
1
Will Your Response Plan Work Without Internet? - Ep 463
48:15
48:15
Lejátszás később
Lejátszás később
Listák
Tetszik
Kedvelt
48:15
Today, we're diving into a topic that might keep you up at night and might make you reconsider your relationship with your Wi-Fi router. Picture this: your internet goes down, and it's not just a blip—it's a full-blown blackout. We're talking no Netflix, no Zoom meetings, and definitely no online shopping. We’ll unravel the chaos that ensues and di…
…
continue reading