Employee error has long been acknowledged to be one of the main causes of healthcare security breaches. Still, a recent report by Kaspersky revealed that approximately one in four healthcare employees, ranging from doctors to admin staff, have never received cybersecurity training. Moreover, 11% of those that did receive training said that it only happened once during the on-boarding process.

[Read More]

The Medical Imaging and Technology Alliance (MITA) recently published a cybersecurity and risk management guidance for medical devices in an attempt to direct healthcare providers on how to deal with device related issues. It acts as a voluntary guide and outlines security features that have been integrated into medical devices. The standard, called the Manufacturer Disclosure Statement for Medical Device Security (MDS2), was developed by and with industry stakeholders in mind.

[Read More]

In recent years, there has been a surge in the number of health apps being developed and there is no indication that this will slow down anytime soon. In the second quarter of 2019, the number of available iOS health apps reached 47,878, almost a six percent increase over the previous quarter. This number only represents the App Store. Moreover, with the spread of HIPAA compliant home speaker devices like Alexa, it has become extremely important to understand when apps are subjected to HIPAA compliance.

[Read More]

For two decades, Giva has been offering its cloud software Service Management Suite™ at an affordable price, with options that can accommodate teams, small and medium businesses and large enterprises. In spite of the industry's competitive nature, Giva plays a major role in its customers' growth and expansion projects by providing Agile customer service help desk, service desk, asset management, knowledge management and IT change management software. Here are just a few reasons why Giva could truly be the bridge to your breakout success.

[Read More]

On Monday, August 19th, Giva customer, The MetroHealth System, launched a new internal Human Resources (HR) service using Giva's HIPAA compliant SaaS Customer Self-Service Portal. The MetroHealth System has for the past five years already been utilizing Giva's Service Management Suite™ in the cloud for their IT Service Desk and a number of other departments such as Facilities and Environmental Services. They are now pleased to be expanding their services by offering Giva's Customer Self-Service Portal to their employees in an effort to offer streamlined HR services.

[Read More]

The use of online health records has risen by 24 percent. A study conducted by the Office of the National Coordinator for Health Information Technology (ONC) has revealed many informative and significant results related to the personal use of online medical records. Below is a summary of the most significant three:

[Read More]

The multichannel nature of healthcare today has made it susceptible to both physical and virtual forms of attack. While cybersecurity is increasingly becoming a major concern for healthcare entities, there are many areas of weaknesses that have yet to be taken care of. They include:

[Read More]

In recent months, a large number of states have sought to improve their healthcare security in various ways. Each of the following amendments and laws that have been passed tackles a different aspect of personal information protection including PHI and other sensitive data. But the list below is not only limited to the laws themselves, rather it includes any precedents that may have a significant effect on how healthcare is dealt with in the future.

[Read More]

Over the last few months, organizations have witnessed a whirlwind of new cyber attacks and breaches. Healthcare providers have long blamed most breaches on employee error and negligence, with various studies and reports revealing that the majority of healthcare breaches are a result of internal actors. And while this may be partially true, the fact remains that many organizations contribute to the problem themselves. Not through a lack of training or resources, but through a lack of proper data access regulation.

[Read More]