July 22, 2016
HIPAA Releases New Guidance On Ransomware
The U.S. Department of Health & Human Services has released new Health Insurance Portability and Accountability Act (HIPAA) guidance on ransomware. According to a blog post, the intent is to help health care entities better understand and respond to the threat of ransomware.
The new guidelines include:
- Conducting a risk analysis to identify threats and vulnerabilities to electronic protected health information and establishing a plan to mitigate or remediate those identified risks
- Implementing procedures to safeguard against malicious software
- Training authorized users on how to detect malicious software and report such detections
- Limiting access to protected health information to only those persons or applications requiring access
- Maintaining an overall contingency plan that includes disaster recovery, emergency operations, frequent data backups, and test restorations
To learn more about the new guidance, head over to the U.S. Department of Health & Human Services blog. If you’re looking for even more great ransomware content, check out our eBook: The Business Guide To Ransomware. This has everything you need to know about ransomware, including the common types of ransomware, how it’s spread, and how to protect yourself. After reading this eBook, you’ll be on your way to keeping your data safer than ever. Download it today!