Cybersecurity Resources for Healthcare

Recently The HHS Office for Civil Rights (OCR) shared a comprehensive list of resources for any HIPAA-regulated entity to assist them in the prevention, detection, and mitigation of data breaches of protected health information that occurs because of hacking or ransomware.

As a covered entity or business associate under HIPAA compliance, an attack on your business may expose unsecured protected health information (PHI).  Under the HIPAA Breach Notification Rule, there are reporting requirements that you must adhere to.

HIPAA Secure Now can help you to mitigate the rising risk of a cybersecurity breach, as well as maintain HIPAA compliance.  Not sure if you’re covered? We can help you to uncover any gaps in your business structure.

This section contains briefs that outline individual threats in detail.

HHS Health Sector Cybersecurity Coordination Center Threat Briefs

A summary page can be found here

o    January 28, 2021 – ATTACK for Emotet

o    March 12, 2021 – New Ryuk Variant Analyst Note

o    April 8, 2021 – Ryuk Variants

o    May 25, 2021 – Conti Ransomware Analyst Note

o    June 3, 2021 – Ransomware Trends 2021

o    July 8, 2021 – Conti Ransomware

o    July 8, 2021 – Phobos Ransomware Analyst Note

o    August 5, 2021 – Qbot/QakBot Ransomware

o    August 6, 2021 – Lazio Ransomware Attack Analyst Note

o    August 19, 2021 – REvil Update

o    August 24, 2021 – OnePercent Group Ransomware Alert

o    August 25, 2021 – IOCs Associated with Hive Ransomware Alert

o    September 2, 2021 – Demystifying BlackMatter

HHS Resources on Section 405(d) of the Cybersecurity Act of 2015:

OCR Guidance:

https://www.hhs.gov/hipaa/for-professionals/security/guidance/cybersecurity/index.html

  • Risk Analysis

https://www.hhs.gov/sites/default/files/ocr/privacy/hipaa/administrative/securityrule/rafinalguidancepdf.pdf

 

HHS Security Risk Assessment Tool:

 

CISA Protecting Sensitive and Personal Information from Ransomware-Caused Data Breaches:

 

CISA Ransomware Guide:

 

FBI Ransomware Resources:

 

OCR Cybersecurity Newsletters:

For more information on our HIPAA compliance and cybersecurity programs, visit here.

The post Cybersecurity Resources for Healthcare appeared first on HIPAA Secure Now!.