Covid-19

Ransomware Resources for HIPAA Regulated Entities

The HHS Office for Civil Rights (OCR) is sharing the following information to ensure that HIPAA regulated entities are aware of the resources available to assist in preventing, detecting, and mitigating breaches of unsecured protected health information caused by hacking and ransomware.

2021 HHS Health Sector Cybersecurity Coordination Center Threat Briefs:

HHS Resources on Section 405(d) of the Cybersecurity Act of 2015:

OCR Guidance:

HHS Security Risk Assessment Tool

CISA Protecting Sensitive and Personal Information from Ransomware-Caused Data Breaches:

CISA Ransomware Guide

FBI Ransomware Resources:

OCR Cybersecurity Newsletters:

REMINDER: A ransomware attack may result in a breach of unsecured protected health information that triggers reporting requirements under the HIPAA Breach Notification Rule.  HIPAA covered entities and business associates should review OCR’s ransomware guidance for information regarding potential breach notification obligations following a ransomware attack.

The post Ransomware Resources for HIPAA Regulated Entities appeared first on Qsource.

Source link

Leave a Reply

Your email address will not be published. Required fields are marked *