January 15th, 2019
Have you just experienced a ransomware attack or other cybersecurity incident, you may be wondering what to do next? Fortunately, the HHS, Office for Civil Rights (OCR) has provided a quick response checklist that explains step by step what a HIPAA covered entity or its business associate should do in response to an incident.
In the event of a cyber-attack or similar emergency an entity should:
December 21st, 2018
As we embark upon the holidays, the team at MedSafe would like to take a moment to thank all of our clients who have dedicated their lives to making a difference. While the majority of us will be enjoying holiday festivities with family and friends, many of you will forego time with your families to care for patients.
December 17th, 2018
It’s no secret that we are in the peak of flu season! Whether you are a nurse, primary care physician, or healthcare professional you are not only susceptible to the virus itself, but you also play a significant role in helping to protect patients against influenza. The CDC recommends that all healthcare workers get vaccinated annually against influenza, as it is the best way to prevent the flu. They also recommend a yearly flu vaccine for all individuals ages 6 months and older.
December 4th, 2018
According to the HIPAA Breach Notification Rule, all covered entities and their business associates are required to report any breach of protected health information. It is essential to understand and implement all breach notification requirements or risk incurring financial penalties as high as $1,500,000 from state attorneys general and the HHS’ Office for Civil Rights.
What is a Breach?
October 15th, 2018
As we move towards the end of the year, many practices and physicians are starting to consider the data they will need to submit under the MACRA/MIPS program. The MACRA/MIPS rules change slightly every year, and this year is no exception. Even though the rules have been adjusted, a basic requirement remains in place:
September 20th, 2018
According to the Health Insurance Portability and Accounting Act of 1996 (HIPAA) Security Rule covered entities (CEs) and business associates (Bas) that have access to electronic personal health information (EPHI) are required to implement safeguards necessary to protect it.
September 6th, 2018
Under the HIPAA security rule, HIPAA covered entities (CEs) and business associates (BAs) are required to protect their electronic personal health information (ePHI), which typically involves identifying and mitigating software vulnerabilities that could put (ePHI) at risk. It also includes conducting a risk analysis, and implementing actions that will reduce these risks.
August 30th, 2018
The State of New York has signed into law a bill designed to prevent sexual harassment in the workplace. The sweeping new legislation includes the requirement of sexual harassment policies and sexual harassment training for New York State employers. Those organizations who do not have prevention guidelines, anti-harassment policies, and training programs in place should develop and implement them immediately.
August 14th, 2018
Healthcare organizations nationwide remain focused on their IT security, as more and more cyberattacks wreak havoc across the industry. Within the last two years, nearly 50% of companies have experienced a data breach, and the severity of these attacks appear to be getting worse.
July 24th, 2018
In 2016, the FBI released a public service announcement warning that “business email compromise (BEC) scams have increased by 1,300% since 2015 and have cost businesses more than $3 billion. Making it a significant threat that businesses should be aware of to reduce the likelihood of becoming a victim.
June 12th, 2018
According to a recent report by Symantec security firm, a cyber group called Orangeworm has targeted the healthcare industry and is wreaking its havoc across the sector worldwide. The group has been unleashing a malware known as Trojan.Kwampirs to gain remote access and compromise the computer systems of firms in the United States, Europe, and Asia. The purpose of the attacks is believed to be corporate espionage; their victims include healthcare providers, pharmaceutical firms, IT solution providers, and healthcare equipment manufacturers among others. (1)
May 16th, 2018
Nearly 4 out of 5 healthcare providers use a mobile device for professional purposes. These numbers continue to rise as healthcare organizations place an increased focus on efficiency and productivity. (1) Although mobile devices are incredibly efficient and convenient, they also harbor measurable risks for data breach and the exposure of protected health information (PHI).
May 3rd, 2018
The mobile technology revolution has impacted nearly every industry across the globe, with healthcare being no exception. Hospitals, clinics, and providers have all quickly embraced the use of smartphones and other mobile devices along with the convenience of accessing important medical information quickly.
April 11th, 2018
Despite the progress made in patient safety over the years, medical errors are still a significant source of injury and said to be the third cause of death in the US, indicating there is still much work to be done. Continued safety education and awareness on the proper methods, procedures, and processes are vital to ensuring patient safety within hospitals and healthcare facilities nationwide.
March 26th, 2018
March 11-17, 2018 was National Patient Safety Awareness Week (PSAW). This week is about raising awareness of patient safety and best practices among healthcare providers and consumers. It is an ideal time for medical practices and healthcare organizations to celebrate successes and focus on patient safety opportunities. This week MedSafe would like to recognize all of the hardworking patient safety professionals that contribute to advancing patient safety, reducing risk, and maximizing value-based care.
March 6th, 2018
The Becker's Clinical Leadership & Infection Control released Ten Top Patient Safety Concerns that should be a priority in 2018, based on research from over the past year. Below is a synopsis of their findings in no particular order:
February 14th, 2018
Another strain of ransomware has wreaked its havoc on the healthcare industry. This time its victims include over 45,000 medical practices and 180,000 physicians that are clients of Allscripts Healthcare Solutions, Inc. Allscripts is a publicly traded American company that provides physician practices, hospitals, and other healthcare providers with practice management and electronic health record technology.
January 25th, 2018
ECRI Institute, a non-profit research organization, recently released its annual Top 10 List of Health Technology Hazards for 2018. The purpose of this report is to inform healthcare facilities about the important safety issues involving the use of health technology and bring attention to potential sources of danger.
January 5th, 2018
With the transition to “value-based care” well underway and healthcare’s shift from volume-based to value-based payment (VBP), significant barriers still remain for many providers while others have become more comfortable with VBP participation.
December 15th, 2017
Earlier this month, CMS delivered its final rule on the Quality Payment Program, starting January 1st, 2018. The following are eight critical points from the Final Rule that you should be aware of: