HIPAA Journal

HIPAA Journal offers the most extensive online coverage of HIPAA-related news available.

National

English

Journal

Outlet metrics

Domain Authority

Ranking

Global

#219314

United States

#62693

Health/Health

#1356

Traffic sources

Monthly visitors

Articles

NIST Publishes Guidance on Implementing Zero Trust Architectures

1 week ago | hipaajournal.com | Steve Alder

Posted By Steve Alder on Jun 19, 2025 The National Institute of Standards and Technology (NIST) has published new guidance on implementing zero trust architecture (ZTA) to help organizations overcome some of the challenges of adopting this new cybersecurity approach. The traditional approach to security involves securing a perimeter, akin to a castle and moat.
HHS-OIG Audit Uncovers Fraud Control Failures Within HHS Grant Payment System

1 week ago | hipaajournal.com | Steve Alder

Posted By Steve Alder on Jun 18, 2025 The Department of Health and Human Services Office of Inspector General (HHS-OIG) has recently published the findings of an audit of the HHS’s Program Support Center (PSC) grant payment system.
Erie Insurance Experiencing Business Disruption Due to Cyberattack

1 week ago | hipaajournal.com | Steve Alder

Posted By Steve Alder on Jun 18, 2025 Pennsylvania-based Erie Indemnity Corp., which does business as Erie Insurance, is investigating a network intrusion. Erie Insurance is a Fortune 500 company that provides a range of insurance policies, including life insurance, auto insurance, cyber insurance, and Medicare supplements. According to a recent Form 8-K filing with the U.S. Securities and Exchange Commission (SEC), unusual network activity was identified on June 7, 2025.
FTC Imposes $1.9 Million Penalty on Evoke Wellness for Deceptive Marketing Campaign

1 week ago | hipaajournal.com | Steve Alder

Posted By Steve Alder on Jun 17, 2025 The Federal Trade Commission (FTC) has proposed a $1.9 million settlement to resolve claims that Evoke Wellness, a Florida-based substance use disorder treatment clinic, engaged in deceptive business practices and deliberately misled consumers who were seeking substance use disorder treatment by pretending to be other clinics.
PHI Stolen in Sensata Technologies Ransomware Attack

1 week ago | hipaajournal.com | Steve Alder

Posted By Steve Alder on Jun 17, 2025 A ransomware attack on Sensata Technologies involved the theft of health and wellness plan data. A former Evoke Wellness employee has been accused of stealing patient data for identity theft, and limited PHI has been impermissibly disclosed due to mailing errors at Blue Shield of California and AffirmedRx PBC.
Legislation Introduced to Make Violence Against Healthcare Workers a Federal Crime

1 week ago | hipaajournal.com | Steve Alder

Posted By Steve Alder on Jun 17, 2025 Companion bills have recently been introduced in the House of Representatives and the Senate that seek to make violent attacks on employees of hospitals and healthcare organizations a federal crime. Data released by the U.S. Bureau of Labor Statistics in 2018 revealed that healthcare workers are five times more likely to experience violence in the workplace than workers in other industries.
Optical Software Solution Provider Ocuco Reports 241K-Record Data Breach

1 week ago | hipaajournal.com | Steve Alder

Posted By Steve Alder on Jun 17, 2025 Ocuco Inc., a Dublin, Ireland-based provider of optical software solutions for eyecare businesses, has recently notified the HHS’ Office for Civil Rights about a data breach involving the protected health information of 240,961 individuals. Ocuco claims to be the world’s largest provider of retail optical software solutions, with its US operations based in Florida.
ComplianceJunction Introduces API Integration to Streamline HIPAA Training for Healthcare Staffing Platforms

1 week ago | hipaajournal.com | Steve Alder

Posted By Steve Alder on Jun 17, 2025 ComplianceJunction has announced a new API-based integration designed to simplify HIPAA compliance training for healthcare staffing platforms. This program aims to assist staffing agencies and healthcare organizations with automating the delivery and tracking of mandatory HIPAA training for temporary and contract workers. ComplianceJunction has built a reputation as the top provider of HIPAA training.
Episource Ransomware Attack Affects Multiple Healthcare Customers

1 week ago | hipaajournal.com | Steve Alder

Posted By Steve Alder on Jun 16, 2025 Episource LLC, a provider of medical coding, risk adjustment services, and software solutions for healthcare providers and health plans, has experienced a cyberattack involving the theft of customer data. A network intrusion was detected on February 6, 2025, after suspicious activity had been identified within its network.
Bipartisan Healthcare Cybersecurity Act Introduced in House and Senate

1 week ago | hipaajournal.com | Steve Alder

Posted By Steve Alder on Jun 16, 2025 Last week, a pair of bipartisan bills were introduced in the House of Representatives and Senate that seek to enhance the cybersecurity of the healthcare and public health (HPH) sector by improving coordination at the federal level to ensure that government agencies can respond quickly and efficiently to cyberattacks on HPH sector entities.