Alert: Postcard Disguised as Official OCR Communication August 6, 2020 OCR has been made aware of postcards being sent to health care organizations disguised as official OCR communications, claiming to be notices of a mandatory HIPAA compliance risk assessment. The postcards have a Washington, D.C. return address, and the sender uses the title “Secretary of Compliance, HIPAA Compliance Division.” The postcard is addressed to the health care organization’s HIPAA compliance officer and prompts recipients to visit a URL, call, or email to take immediate action on a HIPAA Risk Assessment. The link directs individuals to a non-governmental website marketing consulting services. The postcard below is not from HHS/OCR. HIPAA covered entities and business associates should alert their workforce members to this misleading communication. This communication is from a private entity – it is NOT an HHS/OCR communication. Covered entities and business associates can verify that a communication is from OCR by looking for the OCR address or email address on any communication that purports to be from OCR. The addresses for OCR’s HQ and Regional Offices are available on the OCR website at https://www.hhs.gov/ocr/about-us/contact-us/index.html, and all OCR email addresses will end in @hhs.gov. If organizations have additional questions or concerns, please send an email to: [email protected] Suspected incidents of individuals posing as federal law enforcement should be reported to the Federal Bureau of Investigation.
Please read the latest cybersecurity news about email-based phishing campaigns used to deploy ransomware attacks. Attackers are specifically leveraging the COVID-19 pandemic to lure targeted users into clicking the malicious link. Subject lines include “COVID-19 test results” and “virus analyses.” READ MORE
Reopening dental practices needs a team approach, ADA president says Written by Gabrielle Masson | April 30, 2020 As some dental practices begin plans to reopen, dentists should be communicating and engaging with their dental team members to address any concerns related to returning to work amid the COVID-19 pandemic, according to the American Dental Association. “Good communication is the key to making patients and the dental team comfortable as they return to our offices,” said ADA President Chad Gehani, DDS. “Dental team members who are confident that their office is keeping up with all appropriate prevention measures will convey that confidence to patients.” Dr. Gehani said dental teams should meet via video and discuss key concerns, such as availability of and access to personal protective equipment. Dr. Gehani and his wife, Rekha Gehani, DDS, virtually meet with their team members regularly. “Explain what changes will be made moving forward, and if their job responsibilities will be amended,” the ADA president said. “This crisis underscores how every member of the dental team is important and must be respected for their unique roles,” Dr. Gehani concluded.
Some Indiana dentists happy to reopen, return to role as ‘masters of sterilization’ Clinical Leadership & Infection Control Written by Gabrielle Masson | April 28, 2020Some Indiana dentists are excited to resume elective procedures, despite new processes and regulations to protect patients and staff from COVID-19, according to WSBT. Jeffrey Mader, DDS, says his practice has been preparing for reopening, with staff supplied with gowns and N95 masks. “We’ve been masters of sterilization for 40 years,” Dr. Mader told WSBT. “But now we are just taking it to the next level.” Dr. Mader said the practice is expanding its hours, and that he has the busiest May of his career tentatively planned. His office is prioritizing cases by severity, plans to install a new filtration system and will require patients to wait in their car until their appointment. Daniel Klauer, DDS, is using similar protocols to accommodate patients who need immediate procedures and will screen patients by checking their temperatures before they come in.Both dentists said the added measures should reassure patients that dental offices are safe places.
The Protenus Breach Barometer shows over 41.4 million patient records were exposed by 572 security incidents in 2019, while hacking incidents surged and insider-related events
Must Pay a $10,000 HIPAA Settlement
A dental practice in Texas that responded to patients’ Yelp
reviews by disclosing patient names and other health information has gotten a
bad review from federal regulators: A $10,000 HIPAA monetary settlement and a
corrective action plan.
Sodinokibi and Globelmposter Gangs Target Larger Victims, Coveware Warns Mathew J. Schwartz (euroinfosec) • November 1, 2019 Ransomware continues to be highly profitable for criminals.