October 5, 2020. On September 23, 2020, the National Institute of Standards and Technology (NIST) published the final version of the draft of the fifth revision of Security and Privacy Controls for Information Systems and Organizations, also known as NIST SP 800-53-5, where SP means: Special Publication and 800 denotes series. The initial draft of […]

October 3, 2020. On September 23, 2020, the National Institute of Standards and Technology (NIST) published the final version of the draft of the fifth revision of Security and Privacy Controls for Information Systems and Organizations, also known as NIST SP 800-53-5, where SP means: Special Publication and 800 denotes series. The initial draft of […]

October 2, 2020. The National Institute of Standards and Technology (NIST) published yesterday a draft white paper entitled: Securing Data Integrity Against Ransomware Attacks: Using the NIST Cybersecurity Framework and NIST Cybersecurity Practice Guides.  NIST states: “The National Cybersecurity Center of Excellence (NCCoE) at NIST is actively engaged in helping organizations address the challenge of ransomware and […]

October 1, 2020.  Yesterday, September 30, the New York State Attorney General, Letitia James, announced a multistate settlement of $39.5 million by Anthem for its breach of protected health information (PHI) of 78.8 million customers that began in February 2014 and was disclosed in February 2015. The Announcement stated that Anthem previously settled a $115 […]

September 14, 2020. This article highlights the importance of long-term care (LTC) assisted living and skilled nursing facilities having a documented CMS Emergency Preparedness Rule plan in place as a Medicare Conditions of Participation survey and certification framework that is linked to the CMS Testing and Reporting Requirements published in the Federal Register earlier this […]

May 30, 2019.The Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS) has resolved through settlements with two healthcare firms concerning breaches of protected health information (PHI).

May 29, 2019.On May 24, the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS) published a Fact Sheet entitled: Direct Liability of Business Associates, “that provides a clear compilation of all provisions through which a business associate can be held directly liable for compliance with certain requirements of […]

The Cybersecurity and Infrastructure Security Agency (CISA) of the Department of Homeland Security (DHS) issued today an advisory entitled: Microsoft Office 365 Security Observations (Analysis Report: AR19-133A). This advisory is consistent with CISA’s “mission of protecting and strengthening the nation’s critical infrastructure from cyber threats.” In its summary, the advisory states: “As the number of […]

Continuing its mission to lower healthcare costs and improve patient safety, CAIPHI is introducing CyPHIprepare™ an innovative and efficient cloud-based self-assessment tool that can help healthcare providers reduce the cost of emergency preparedness and save up to 90 percent over the cost of hiring outside intermediaries. Nearly 25 years ago, the federal government began requiring that healthcare providers implement and […]

JOHNS ISLAND, SC.  As healthcare Emergency Operations Planners (EOPs) prepare to assess readiness and train workforce members in anticipation of Centers for Medicare & Medicaid Services (CMS) emergency preparedness annual survey and certification process, CAIPHI obtained patent pending status on April 3 for inventions related to CyPHIprepare™. CyPHIprepare™ is a powerful, secure, cloud-based tool designed […]