Advanced Search

Home Health & Hospice Week

Industry Notes:

HIPAA Vulnerabilities May Haunt Your Organization

Published on Wed Apr 20, 2011

Tip: Get your laptops encrypted. Are these "high-impact" vulnerabilities to protected health information identified in a recent series of HHS Office of Inspector General audits putting your HIPAA compliance at risk? The OIG surveyed seven large hospitals for HIPAArisks, and it found 151 vulnerabilities, it says in a new report: "unencrypted laptops and portable drives containing sensitive personal health information, outdated antivirus software and patches, unsecured networks, and the failure to detect rogue devices intruding on wireless networks." The audits "raise significant concerns about the security of electronic patient health information," the OIG says. Remember: "Both the Social Security Act and the Security Rule require a covered entity ... to (1) ensure the confidentiality, integrity, and availability of [PHI]; (2) protect against any reasonably anticipated threats or risks to the security or integrity of the information; and (3) protect against unauthorized uses or disclosures of the information." Watch out: The [...]
You’ve reached your limit of free articles. Already a subscriber? Log in.
Not a subscriber? Subscribe today to continue reading this article. Plus, you’ll get:
  • Simple explanations of current healthcare regulations and payer programs
  • Real-world reporting scenarios solved by our expert coders
  • Industry news, such as MAC and RAC activities, the OIG Work Plan, and CERT reports
  • Instant access to every article ever published in your eNewsletter
  • 6 annual AAPC-approved CEUs*
  • The latest updates for CPT®, ICD-10-CM, HCPCS Level II, NCCI edits, modifiers, compliance, technology, practice management, and more
*CEUs available with select eNewsletters.

Other Articles in this issue of

Home Health & Hospice Week

View All