HHS Issues Security, Privacy Guidance for COVID-19 Issues
Marianne Kolbasuk McGee
Federal regulators are alerting healthcare organizations about an array of coronavirus-themed cyberthreats. Plus, they're advising them to avoid potential HIPAA privacy violations involving unauthorized disclosures of patient information to news outlets during the COVID-19 crisis. On Monday, the Department of Health and Human Services' Office for Civil Rights issued guidance compiling a list of resources to help organizations "detect, prevent, respond and recover" from a surge of coronavirus-themed cyberthreats, ranging from ransomware and other types of extortion to phishing and attacks on video conferencing technology platforms.
"Cybercriminals may take advantage of the current COVID-19 global pandemic for their own financial gain or other malicious motives," OCR notes in a statement. With the increase in COVID-19-related malicious activity, OCR is encouraging...