Decisions Coming Back to Haunt You – Ep 379 

As you know, each year we record a Halloween episode. This year we are covering very scary decisions that have come back to haunt several organizations, including an organization’s decision not to report a cyber attack, an entity that thought they’d just stroke a check for fines assessed and everything would be OK, and a provider who posted PHI on social media. Listen in and learn what NOT to do.

In this episode:

Decisions Coming Back to Haunt You – Ep 379

Today’s Episode is brought to you by:

Kardon

and

HIPAA for MSPs with Security First IT

 Subscribe on Apple Podcast. Share us on Social Media. Rate us wherever you find the opportunity. 

The Privacy and Security Boot Camp

3.5 day In Person Event

Mar 12, 13, 14 and 15, 2023

PriSecBootCamp.com

Great idea! Share Help Me With HIPAA with one person this week!

Learn about offerings from the Kardon Club

and HIPAA for MSPs!

Thanks to our donors. We appreciate your support!

If you would like to donate to the cause you can do that at HelpMeWithHIPAA.com

Like us and leave a review on our Facebook page: www.Facebook.com/HelpMeWithHIPAA

If you see a couple of numbers on the left side you can click that and go directly to that part of the audio. Get the best of both worlds from the show notes to the audio and back!

PriSec Session of the Week

description of what we’ll cover on this topic at the PriSec Boot Camp in Louisville, KY.

HIPAA Say What!?!

In other HIPAA related news: More to come soon from CISA and by extension Health Sector Coordinating Council which includes 405(d) as a focus on critical infrastructure cyber resiliency “soft spots” are getting noticed:

“ Water, emergency communications and healthcare are soft spots in U.S. critical infrastructure resiliency, areas that if compromised could directly affect people’s safety. ”

Decisions Coming Back to Haunt You

Nuke, pave, don’t report the attack. It will be ok.

7 Ways To Screw Up Incident Response – Ep 338 – Help Me With HIPAA

Note that the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) is coming soon folks.

Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) | CISA

All organizations are encouraged to share information about unusual cyber activity and/or cyber incidents 24/7 already.

We can stroke a check for those fines. It will be ok.

3 Ways Encryption Fails – Ep 343 – Help Me With HIPAA

Enforcement Actions – October 18, 2022: Consent Order Issued to EyeMed Vision Care LLC

Press Release- October 18, 2022: DFS Superintendent Harris Announces 4.5 Million Cybersecurity Settlement with EyeMed Vision Care LLC | Department of Financial Services

Physician and Sales Representative Charged in $2.5 Million Health Care Fraud and with Unlawful Disclosure of Patient Information | USAO-NJ | Department of Justice

Pharmaceutical Sales Representative Admits Role in Health Care Fraud and Criminal HIPAA Schemes | USAO-NJ | Department of Justice

It’s just Social Media, not real life. It will be ok.

Middle Tennessee doctor violates federal HIPAA law

The medical board is reviewing it now, you know there will be an OCR look at the situation, and who knows what else will be haunting this doctor for years to come.

Speaking of decisions that may come back to haunt you, not attending the Privacy and Security Boot Camp could be one of those. Join us March 12-15, 2023 in beautiful Louisville, KY and learn how you can help prevent bad decisions from coming back to haunt you. Register now to take advantage of our early bird special.

Remember to follow us and share us on your favorite social media site. Rate us on your podcasting apps, we need your help to keep spreading the word. As always, send in your questions and ideas!

Special thanks to our sponsors Security First IT and Kardon.