The Latest News on Security, Privacy & Compliance
There are several privacy, security and compliance topics making headlines and trending across the healthcare IT industry. For example, OCR announced an initiative to investigate smaller breaches, cyberattacks and insider threats continue to be hot topics and wireless keyboard and mouse hacks have been revealed. Read our latest newsletter to catch up on some of the top headlines from around the industry and at CynergisTek.
OCR to Expand Compliance Reviews of Small Healthcare Breaches

In this blog post, David Holtzman reviews OCR's announcement that they will now be expanding review and investigations into breaches affecting fewer than 500 people. Additionally, they will investigate covered entities that may have underreported breaches and failed to notify the individuals.


More Breaches Expose Mental Health, Substance Abuse Data

David Holtzman discusses recent breaches of mental health and substance abuse information and how the sensitivity of this information heightens the importance of protecting the need for privacy of those patients.


Infographic: HIPAA Compliance & Enforcement

We rrecently released an infographic on OCR enforcement activity from the past several months. The total amount monetary settlements in 2016 so far is over $20.3 million, which is already much more than any other year.


CynergisTek Ranks #512 on Inc. 5000; Number One Healthcare Security Vendor on List

CynergisTek has been ranked on the Inc. 5000 list for the third consecutive year. This time, we were named the 512th fastest growing privately-held company in the country as well as the highest-ranked healthcare security vendor listed.


Pro Tips on Strengthening Cybersecurity

Clyde Hewitt, CynergisTek's VP of Security Strategy, recently discussed how perimeter security can help prepare organizations for some of the hacking attacks we've recently seen in healthcare. He explains how vulnerability scans, mock phishing attacks and regular technical testing assessments are key for defending your organization.


When Sam Wasn't Sam

This blog post from Mac McMillan highlights the dangers that can arise from abuse of access privileges. He also outlines three steps organizations should take to reduce this risk.


CynergisTek Continues to Expand Executive Team, Adds Vice President of Audit Strategy

We recently announced the further expansion of our executive team with the addition of Marti Arvin as VP of Audit Strategy. Drawing on her extensive experience building and managing compliance and research programs, she will contribute to CynergisTek's industry outreach and educational programs. Marti's hire is in addition to the recent hire of industry veteran Clyde Hewitt as VP of Security Strategy.


MouseJack Hack: Wireless Keyboard & Mouse Lets Bad Guys in the House

In his latest blog post, our Sr. Penetration Tester John Nye outlines his findings from investigating the MouseJack hack that we learned about at the recent DEF CON conference.


Upcoming Educational Events
CynergisTek executives are speaking at several conferences and webinars in the next few months, including CHIME LEAD Forums, AHIMA National Conference and HCCA Compliance Enforcement Institute. CynergisTek is also providing free HIPAA Privacy and Security Workshops across the nation. Click here for more details on all upcoming educational events.

Thank you for reading this month's newsletter. Click here if you would like to see additional topics addressed in the future.