Help Me With Hipaa

SaaS continues to grow as a popular way to deploy business applications. It is crucial for businesses to understand what data they are storing in their SaaS cloud applications and how to protect it from data breaches. So, listen to us discuss securing your SaaS. More info at HelpMeWithHIPAA.com/334

Protecting your company’s data is no longer optional. With so many changes in how people work today and where they are working from, keeping a low profile when it comes to protecting data won’t cut it anymore. Today, we review a recent report released by Shred-it, a secure information destruction company, called Data Protection Report 2021. More info at HelpMeWithHIPAA.com/333

For the Thanksgiving episode this year, we talk to the Kardon Team about the recent social engineering attack; a follow up from our Halloween episode, We Are Under Attack - Ep 328. We find out what they experienced and how they felt during and after the attack.  And, because it’s Thanksgiving, we each share what we are thankful for in 2021.  More info at HelpMeWithHIPAA.com/332

Use of legacy software and devices plague healthcare. OCR’s recent newsletter focuses on why legacy systems are still used in healthcare organizations and provides guidance on ways to manage the risks of these systems. More info at HelpMeWithHIPAA.com/331

The HITECH Act added that state attorney generals can take on cases on behalf of their constituents under HIPAA.  We haven’t seen that many cases from the states thus far, but that may be changing.  Today we discuss a recent New Jersey case regarding fraud, deceit, misrepresentation and professional misconduct. This is an eye opening state level case that everyone should pay attention to. More info at HelpMeWithHIPAA.com/330

Insider threats are dangerous for any organization, not just healthcare. As a result, healthcare organizations need to be extra vigilant when it comes to protecting patient data. Today, we talk with Ray Ribble, CEO of SPHER, to hear some stories about why it’s important to review EHR logs and how his company can help you identify potential insider threats. More info at HelpMeWithHIPAA.com/329

It’s time for our annual Halloween episode!  This year we will tell you a scary, true story of how our two companies were actively targeted and attacked by a cybercriminal. Hear what happened and how our teams reacted to the cyber attack. More info at HelpMeWithHIPAA.com/328

In today’s episode, we talk with Josh Corman, Chief Strategist Cybersecurity and Infrastructure Security Agency (CISA) at the Department of Homeland Security. We will learn about CISA and what information and freely available services they provide to help healthcare businesses and other organizations within the nation’s 16 critical infrastructure sectors from cyber attacks.  More info at HelpMeWithHIPAA.com/327

Email is a great tool for communication. It is quick, simple, and it has the potential to reach so many people in so little time. But, it can also be an easy way for hackers to get their hands on your personal information if you're not being careful. Phishing scams are one of the most popular ways that hackers use email as a tool to steal your information and cause data breaches.  Email is evil! More info at HelpMeWithHIPAA.com/326

IT and cybersecurity services are not the same. If you are in the market to purchase managed services or security services from an IT firm, you’ll want to listen to this podcast to understand how they are different, why they are different and why you need to understand those differences to better protect your organization from cyber attacks. More info at HelpMeWithHIPAA.com/325

In a world where people are more dependent on technology but lack the expertise to manage their own networks and systems effectively and efficiently, they turn to Managed Service Providers (MSPs).  CISA has released a guide, Risk Considerations For Managed Service Provider Customers, that outlines risk considerations organizations need to consider when they partner with a MSP.  We will cover this in today’s episode and we are making a big announcement that you’ll want to hear. More info at HelpMeWithHIPAA.com/324

There are many challenges that come with preparing for and responding to a ransomware attack. Ransomware gangs are constantly changing their tactics in order to get to your organization's data. Therefore, as the ransomware landscape continues to evolve, so too must the preparations and responses of businesses. More info at HelpMeWithHIPAA.com/323

You know how we love to pass along guides and resources that can help you improve your organization's privacy and security programs.  Today, we are going to review a recent resource guide put out by HHS’ ASPR TRACIE office called Healthcare System Cybersecurity - Readiness and Response Considerations.  This guide is packed with very helpful tips, best practices, and resources surrounding cybersecurity and responding to cyber incidents.  And it’s FREE!  More info at HelpMeWithHIPAA.com/322

Social media is full of people who speak “confidently” about topics that they simply do not fully understand.  HIPAA is one of those topics.  Today, we are covering 7 HIPAA facts that we hope will set the record straight about frequently misunderstood HIPAA topics. More at HelpMeWithHIPAA.com/321

Learn 'tricks of the trade' from a real social engineering tester. We interview William Price of Cyberx.tech  to learn how they are able to successfully penetrate a company's defenses and get access to their most critical information. How likely would your organization be vulnerable to these same methods? More info at HelpMeWithHIPAA.com/320

Have you ever heard tech folks refer to a computer problem as an ID10T error?  You probably thought it was some highly technical term geeks use.  Well, it’s not and today we are going to talk about a couple posts and articles where folks’ are flying their ID10T flag high and proud. And hopefully try to prevent you from making an ID10T error. More info at HelpMeWithHIPAA.com/319

It’s that time of year again.  Time to start preparing for National Cybersecurity Awareness Month coming up in October.  Do Your Part. #BeCyberSmart is the theme again this year.  Be a Cybersecurity Awareness Month Champion for your business, your community and your family.  More info at HelpMeWithHIPAA.com/318

Managing your vendors, or your supply chain, has become increasingly more important these days.  As we’ve seen in the news just in the last several months, data and system breaches can come as a result of the vendors you work with.  So, we felt like it was time to revisit this topic by reviewing the recent update to the HIC SCRiM guide that includes 6 steps for vendor management. More info at HelpMeWithHIPAA.com/317

Every year we cover the most recent report released on the cost of a data breach.  No surprise from this year’s report that the cost continues to rise. And healthcare breaches cost the most across all industries.  Listen in as we go through IBM’s Cost of Data Breach Report 2021. More info at HelpMeWithHIPAA.com/316

There’s a new data breach notification bill in Congress that will affect the business community as a whole, not just healthcare. It will create a new data breach disclosure requirement for federal agencies, federal contractors and critical infrastructure companies. It’s time to let folks know when breaches happen. We can’t protect ourselves from things we don’t know about. More info at HelpMeWithHIPAA.com/315