Ransomware Resources for HIPAA Regulated Entities

Ransomware Resources for HIPAA Regulated Entities

The HHS Office for Civil Rights (OCR) is sharing the following information to ensure that HIPAA regulated entities are aware of the resources available to assist in preventing, detecting, and mitigating breaches of unsecured protected health information caused by hacking and ransomware.

HHS Health Sector Cybersecurity Coordination Center Threat Briefs

Sector and Threat Briefs

HHS Resources on Section 405(d) of the Cybersecurity Act of 2015

  • Health Industry Cybersecurity Practices: Managing Threats and Protecting Patients
  • Cybersecurity Reports and Tools

OCR Guidance

HHS Security Risk Assessment Tool

CISA Protecting Sensitive and Personal Information from Ransomware-Caused Data Breaches

CISA Ransomware Guide

FBI Resources

OCR Cybersecurity Newsletters

Reminder

A ransomware attack may result in a breach of unsecured protected health information that triggers reporting requirements under the HIPAA Breach Notification Rule.  HIPAA covered entities and business associates should review OCR’s ransomware guidance for information regarding potential breach notification obligations following a ransomware attack.

Have questions? I’m here to help.

Categories
Accounting and Tax Services Litigation Support Managed Care Consulting Managed Care Contract Negotiations Medical Practice and Healthcare Entity Valuation Medical Practice Assessment Medical Practice Brokerage Medical Practice Embezzlement Consulting Medical Practice Management Medical Practice Merger Advice Medical Strategic Planning Newsletter Personal Financial Planning Oversight Physician Compensation Models Physician Compliance Physician Financial Management Services Retirement Uncategorized
About Reed Tinsley, CPA

As a top advisor to physicians, I help increase practice profits by delivering hands-on, expert medical accounting/tax support, practice counsel, and revenue-building strategies. Read More >

Reed Tinsley, CPA for Physicians