CPO

Personal data for 1,000 pensioners accessed from OC Sanitation District

Birth dates and Social Security numbers for 1,000 Orange County Sanitation District retirees were accessed in a phishing scheme, the district confirmed Monday.District retirees, former employees and board members were being notified of the data breach in the utilitys deferred compensation plan, which occurred in December after a file at NFP Corp. was accessed via

[ Read More ]

Top 10 Topics for Directors in 2019: Cybersecurity

Improve Disclosures and ControlsWith threats of nation-states infiltrating supply chains and landmark laws being passed, cybersecurity and privacy are critical aspects of director oversight. Recent court decisions and speeches from the SEC have made it clear that directors are not able to delegate cybersecurity oversight: directors each have the responsibility to personally understand cybersecurity risk

[ Read More ]

Pen Testing of HHS Units Reveals Weaknesses

In a summary report issued Wednesday, the HHS Office of Inspector General highlighted several security controls that need improvement across eight HHS operating divisions. The weaknesses included configuration management, access control, data input controls and software patching, the report notes. Similar concerns have been raised in previous OIG reports.The OIG report is based on findings

[ Read More ]

Ransomware Attack on Vendor Affects 600,000

The incident highlights the difficulty some organizations have in determining whether to report ransomware attacks as breaches to comply with the HIPAA Breach Notification Rule.More than 600,000 Michigan residents may have had their information compromised in the breach at Detroit-based Wolverine Solutions Group, according to a statement from Michigan Attorney General Dana Nessel and Anita

[ Read More ]

Remote Patient Care: How Secure is Your Mobile Data?

A lot of attention is focused on network access security; it can be easy to overlook the vulnerability of data at the edge. We hear a lot about cybersecurity breaches in the news, but were not always told the cause. The business or organization involved is rarely forthcoming with insight about breach scope and exposure.

[ Read More ]

President’s Proposed 2020 Budget: Impact on Cybersecurity

Agencies that would see a boost in cybersecurity-related funding under the proposed budget for the fiscal year that starts Oct. 1 include the Department of Defense and the Department of Energy, as well as the Food and Drug Administration.But two Department of Health and Human Services’ units that regulate health IT security and privacy matters

[ Read More ]

3 Ways to Manage the Cyber Risk Posed by Connected Medical Devices

Its not just computers or smartphones that can make your healthcare organization vulnerable to security breaches. Pacemakers, insulin pumps, wearable devices that track patient activity levels and pills containing ingestible sensors that track medication adherence are among the innovations that allow physicians to monitor patients remotely, promising more cost-effective care and improved outcomes.But connected medical

[ Read More ]

New cybersecurity guidelines to fight hacking

The guidance document, entitled Health Industry Cybersecurity Practices: Managing Threats and Protecting Patients, offers practical guidance for addressing what the Council has identified as the most impactful threats… within the industry. This document is a useful material for healthcare business managers faced with ever-increasing cybersecurity risks and the attending risks to patient safety and operational

[ Read More ]