Search Results

The default setting for search results displays All Content. If you prefer to see recent content only, please adjust the date filter.

Filter your results:

Types

Topics

302 Results Found

Other Resources

Call for Videos: Encouraging Unvaccinated Colleagues

We’re trying to reach hospital and health system employees that have yet to be vaccinated. Using your phone, we need you to record a short message about why it’s important that people in heath settings get vaccinated.
Other Cybersecurity Reports
Public

HC3 TLP White Alert: Hardening Remote Access VPN Amplify Alert - October 1, 2021

The NSA and CISA issued a joint information sheet providing guidance on hardening Virtual Private Networks (VPNs) services.
Standards/Guidelines

Guidelines for Releasing Patient Information to Law Enforcement

Introduction Hospitals and health systems are responsible for protecting the privacy and confidentiality of their patients and patient information.
Advisory
Member

Regulatory Advisory: SAMHSA Issues Proposed Rule on 42 CFR Part 2

The Substance Abuse and Mental Health Services Administration (SAMHSA) Aug. 22 issued a proposed rule to amend sections of the Code of Federal Regulations (CFR) that dictate restrictions on how federally assisted alcohol or drug abuse programs may use and share patient information.
Member

Updated Guidelines for Releasing Information on the Condition of Patients

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) mandated regulations that govern privacy standards for health care information. HIPAA regulations specify the purposes for which information may and may not be released without authorization from the patient. This document updates our 2001 Guidelines for Releasing Information on the Condition of Patients.
H-ISAC: White Reports

H-ISAC TLP White Report: Hacking Healthcare January 19, 2021

This week, Hacking Healthcare takes a look at a court ruling that could impact the Department of Health and Human Services (HHS) Office of Civil Rights’ (OCR) imposition of penalties relating to HIPAA violations.
Letter/Comment

AHA Letter to Senator Warner on Cybersecurity Policy Options in the Health Care Sector

The American Hospital Association (AHA) writes to provide feedback on the cybersecurity policy proposals released in Senator Mark R. Warner's report last month. Cybersecurity is, at its core, a necessary element of patient safety for hospitals and health systems.
H-ISAC: White Reports
Public

H-ISAC Report: Hacking Healthcare - TLP White, September 2, 2020

This edition of Hacking Healthcare includes an examination of Health and Human Services’ (HHS) Office of Civil Rights’ (OCR) summer cybersecurity newsletter; a brief on the recent charges levied against ex-Uber Chief Security Officer (CSO) Joe Sullivan for his role in covering up a 2016 data breach; and lastly, breaks down an insider threat attack with a happy ending and considers what organizations can do to mitigate such attacks.

Business Associate Breaches

The volume of data security breaches occurring in health care has captured hospital and system trustees’ attention and forced them to investigate their respective organization’s plans a
News

Final rules exempt certain wraparound benefits under ACA, HIPAA

The departments of the Treasury, Labor and Health and Human Services yesterday published final rules&nbsp