Current emergencies, March 20, 2023, https://www.cms.gov/About-CMS/Agency-Information/Emergency/EPRO/Current-Emergencies/Current-Emergencies-page.
2022 Cybersecurity Advisory Committee (CSAC) Reports and Recommendations, March 6, 2023, https://www.cisa.gov/resources-tools/resources/2022-cybersecurity-advisory-committee-csac-reports-and-recommendations.
October 5, 2020. On September 23, 2020, the National Institute of Standards and Technology (NIST) published the final version of the draft of the fifth revision of Security and Privacy Controls for Information Systems and Organizations, also known as NIST SP 800-53-5, where SP means: Special Publication and 800 denotes series. The initial draft of […]
October 3, 2020. On September 23, 2020, the National Institute of Standards and Technology (NIST) published the final version of the draft of the fifth revision of Security and Privacy Controls for Information Systems and Organizations, also known as NIST SP 800-53-5, where SP means: Special Publication and 800 denotes series. The initial draft of […]
October 2, 2020. The National Institute of Standards and Technology (NIST) published yesterday a draft white paper entitled: Securing Data Integrity Against Ransomware Attacks: Using the NIST Cybersecurity Framework and NIST Cybersecurity Practice Guides. NIST states: “The National Cybersecurity Center of Excellence (NCCoE) at NIST is actively engaged in helping organizations address the challenge of ransomware and […]
October 1, 2020. Yesterday, September 30, the New York State Attorney General, Letitia James, announced a multistate settlement of $39.5 million by Anthem for its breach of protected health information (PHI) of 78.8 million customers that began in February 2014 and was disclosed in February 2015. The Announcement stated that Anthem previously settled a $115 […]
September 14, 2020. This article highlights the importance of long-term care (LTC) assisted living and skilled nursing facilities having a documented CMS Emergency Preparedness Rule plan in place as a Medicare Conditions of Participation survey and certification framework that is linked to the CMS Testing and Reporting Requirements published in the Federal Register earlier this […]
May 30, 2019.The Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS) has resolved through settlements with two healthcare firms concerning breaches of protected health information (PHI).
May 29, 2019.On May 24, the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS) published a Fact Sheet entitled: Direct Liability of Business Associates, “that provides a clear compilation of all provisions through which a business associate can be held directly liable for compliance with certain requirements of […]
The Cybersecurity and Infrastructure Security Agency (CISA) of the Department of Homeland Security (DHS) issued today an advisory entitled: Microsoft Office 365 Security Observations (Analysis Report: AR19-133A). This advisory is consistent with CISA’s “mission of protecting and strengthening the nation’s critical infrastructure from cyber threats.” In its summary, the advisory states: “As the number of […]