Layna Rush

Featured in: Favicon

law360.com Favicon

jdsupra.com Favicon

cpomagazine.com

Articles

Proposed HIPAA Security Rule Updates | JD Supra

Jan 13, 2025 | jdsupra.com | Alisa Chestler |Layna Rush

The Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) issued a Notice of Proposed Rulemaking (NPRM) on December 27, 2024, to update the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Security Rule and its requirements. The official version was published on January 6, 2025. This is the first update in a decade for the security framework that has been in effect since 2003.
The Office for Civil Rights Recently Settled Two Ransomware Related Investigations | JD Supra

Oct 11, 2024 | jdsupra.com | Alisa Chestler |Layna Rush

The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) recently settled two ransomware cases with covered entities. These cases signal the government's growing concern with health care organizations' ability to plan for and potentially remediate vulnerabilities prior to any third-party threat actor attempting to compromise a system.
Best Practices for Protecting Operations from Vendor's Cyber Incidents | JD Supra

Oct 8, 2024 | jdsupra.com | Dan Parks |Layna Rush

October 8, 2024 To embed, copy and paste the code into your website or blog: In the aftermath of a vendor's hack that crippled an industry, ensure your business is up to date on best practices for mitigating the risks of third-party cyber incidents. Many businesses struggle to adequately consider the risk to their operations if a third-party vendor experiences a cybersecurity incident.
HIPAA Updates: The Obligations Continue to Unfold | JD Supra

Feb 20, 2024 | jdsupra.com | Alisa Chestler |Layna Rush

There has been a notable emphasis on proactive enforcement of the privacy and security of protected health information in recent weeks as evidenced by multiple developments regarding compliance with the Health Insurance Portability and Accountability Act (HIPAA). Recent developments include launching the HIPAA Audit Review Survey aimed at evaluating the effectiveness of past audits and gathering feedback – potentially foreshadowing the return of the audit program.
MOVEit Transfer Zero-Day Vulnerability: What Companies Need to Know

Jun 20, 2023 | cpomagazine.com | Michael McLaughlin |Alisa Chestler |Layna Rush |Matthew White

On May 31, 2023, renowned managed file transfer solution provider Ipswitch, Inc. revealed a zero-day vulnerability in its flagship solution, MOVEit Transfer, that can enable mass data theft from thousands of organizations. File transfer services play crucial roles in securing business and government operations, but companies must be aware of the inherent risks and adopt mitigations to safeguard against those risks.