How do you send PHI via email and still follow HIPAA? And how do you send encrypted email in Gmail? These are two of the most common questions we get. It’s an understandable question. Email has become the communication tool of choice in the digital age. Most workplaces rely on it heavily. If [...]
As part of our work helping medical practices with HIPAA and cybersecurity, we get to see lots of HIPAA mistakes. It’s interesting to spot the similarities across so many different companies. Here are nine of the most common HIPAA mistakes that we see. The scary part is we see them all the time. HIPAA Mistake 1: [...]
Many health care providers are required to adhere to the Health Insurance Portability and Accountability Act (HIPAA), but is Gmail HIPAA-compliant? This article talks about how you can send HIPAA compliant email. […]
Last week, a nasty ransomware email showed up in my personal Gmail inbox. As free services go, Gmail is pretty good at spotting phishing and ransomware emails. However, they completely missed this one. It wasn't in my Spam folder, and it had none of the warnings from Google that it might be malicious. Here's what [...]
“What are my options for HIPAA compliant cloud storage? ” In recent years, cloud storage has risen in both effectiveness and popularity. Its convenience is undeniable– the ability to access your data from anywhere is amazing. But can business associates and medical providers take advantage of these services to store PHI? What exactly does [...]
Banking Trojans are back, and they're nasty. Click on the wrong email, and hackers drain your firm's operating accounts. Incredibly, many of these attacks even defeat your bank's two-factor authentication. Here's a great article that explains how banking trojans bypass two-factor authentication. So what should every business do to protect yourself against banking trojans? The [...]
If you're thinking of hiring a Penetration Testing service, you definitely need to do your due diligence. There's a wide range of services that penetration testing firms offer, ranging from cheap automated scans to manual expert exploit detection. As part of your due diligence process, here are 14 questions that you should consider asking the [...]
Transcript: Hi there. A a few months back, a client asked us to speak to a new vendor that they were thinking about doing business with. The cost of doing business with our client is that they were asking this vendor to sign what's called a HIPAA Business Associate agreement. If you're watching this video, you're probably [...]
We'd like to answer one of the most common questions that we get about HIPAA compliant email. One of the visitors to our site asked us... "How is the e-mail encrypted when the client/patient responds to your encrypted e-mail you send to them? I understand the e-mail you send to them is encrypted, but I [...]
Last week, we were sitting in a conference room with 20 people. These were smart people. All highly educated. They all use computers every single day. We were talking to them about ways to keep safe online. The conversation ranged from phishing to ransomware to staying safe at home. It was fun to be with [...]