Lexology November 21, 2023
McGuireWoods LLP

On Oct. 31, 2023, the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced it had settled with Doctors’ Management Services Inc. (DMS) over a self-reported ransomware attack that occurred in 2017. According to the OCR’s press release, this marks the first time OCR has reached a settlement following a reported breach resulting from a ransomware attack.

Entities subject to the Health Insurance Portability and Accountability Act of 1996, as modified by the Health Information Technology for Economic and Clinical Health Act of 2009 (HIPAA), should view this as a signal of OCR’s intent to ensure covered entities and business associates are prepared to address cybersecurity vulnerabilities and are proactive in reviewing for and addressing potential...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health IT, Health System / Hospital, HHS, Provider, Technology
Related Articles:
Homograph Attacks in Healthcare: A Growing Cybersecurity Threat
AI In Cybersecurity: Understanding The New Regulatory Framework And What It Means For Businesses
Solution Under Review: The Battle For Industrial Cybersecurity
Clark on Connecting: Loyalty and Cybersecurity Go Hand in Hand
M&A Cyber Success Depends on Communication, an Honest Evaluation of Each Side’s Strengths & Risks, and an Open Mind

Share This Article