From Report on Medicare Compliance - Every month, employees at Lawrence General Hospital in Massachusetts receive phishing emails with enticing subject lines, including “Prince’s last words on video: breaking news from CNN” and “Banking statement: Your transaction failed.” They are designed to test whether employees will open the email and the link to an attachment. Even though employees have ongoing information security training, where they learn about phishing, some of them open the emails. Read more

From Report on Patient Privacy - A 21-physician orthopedic surgery practice in Raleigh, N.C., which traces its roots back to 1919, was trying to do the right thing by using a vendor to convert X-rays into electronic images. Read more

Compliance Blog

By Lauren Clason - April 22, 2016
While they may not fall under the HIPAA umbrella (yet), the privacy of biometric and other health data captured by the influx of new apps and wearable gadgets is a source of concern among consumers and regulators alike. The rapid evolution of health IT means it’s only a matter of time before they...
By Lauren Clason - March 15, 2016
The answer is maybe not, according to a study released on March 10 by Advisen Ltd. and sponsored by ID Experts Corp. Most cyber insurance seems to be designed as a bumper guard for major breaches, while the “vast majority” of data breaches are relatively small, falling well below the average...
By Nina Youngstrom - March 4, 2016
Even though they are supposed to be excluded, inpatient-only procedures continue to be included in short-stay hospital reviews by quality improvement organizations (QIOs), experts say. It’s driving hospitals crazy because even the language tells you it makes no sense: The phrase guaranteeing Part A...

It's quick and easy to sign up for FREE access to!

Why do I need to register?