Month: April 2014

Assumption of Breach …is it Safe to Assume?

The term Assumption of Breach (AOB) was coined a few years ago in IT Security to express the reality that your company cannot possibly hope to avoid every potential breach that you could face. We see more and more every day the rapid evolution of tactics and techniques used by hackers to penetrate corporate networks and steal … Continued

Severe HIPAA Penalty Serves as a Warning

The Department  of Health and Human Services released news last week that a HIPAA Covered Entity health care provider has incurred a $1.7M fine as the result of just one unencrypted laptop that went missing from one of their satellite facilities. This penalty was more severe because previous risk assessments (more than one) indicated the lack of … Continued

Are You Ready for Your HIPAA Compliance Audit?

Should You Wait for HHS to Come Calling? In February, Health and Human Services’ Office for Civil Rights (HHS OCR) announced the return of the HIPAA audit program conducted in 2012. We see more details emerging about their focus in the upcoming round of audits and the process they will be using to conduct audits, … Continued

Heartbleed Bug Threatens Internet Security and Compliance

Heart Stopping News of Compliance Threat Requires Your Attention In the course of the last week, a critical vulnerability has been discovered in the widely used OpenSSL encryption software. Dubbed Heartbleed because it intercepts data from heartbeat requests in the system. This bug has been part of OpenSSL software versions 1.0.1 through 1.0.1f (and the … Continued

Don’t Let End of Life for Software be the End of Your Security

Compliance Issues Raised by the End of Life for Windows XP Software It’s the end of the road for Windows XP. The very popular and widely used Microsoft operating system will have officially reached its “end of life” for organizations in the United States. As of April 8, 2014, Microsoft will no longer provide any … Continued

Is your organization HIPAA compliant?

Contact us to find out sooner rather than later.

Ask about our letters of attestation that demonstrate your compliance!