This image was originally posted to Flickr by Ministério da Defesa at http://flickr.com/photos/77712181@N07/14338252946

06 Jul 2016

This image was originally posted to Flickr by Ministério da Defesa at http://flickr.com/photos/77712181@N07/14338252946In the great schism that is the 2016 election year, bi-partisan participation may seem like a thing of the past, but believe it or not, it is not quite dead just yet.

A letter sent by Congressmen Ted Lieu (D-Calif.) and Will Hurd (R-Texas) this week not only praised Deputy Director for Health Information Privacy Deven McGraw, at the Department of Health and Human Services Office for Civil Rights (OCR) for her announcement that the OCR will be providing guidance and establishing protocol for ransomware victims in the healthcare industry, but to also provide some guidance of their own. The two men have devised a strategy that will help the OCR develop the resources needed by the provider organizations, in order to implement the protocol.

A main focus of the bi-partisan letter revolved around patients impacted by the breach; specifically, parameters for notification. Lieu and Hurd state that it is not necessary in every case, due to the fact that ransomware attacks do not generally compromise patient privacy. The main issue, instead, tends to be the patient accessibility, or lack thereof. The virus is detrimental to this industry because it prohibits patients from accessing either electronic records or, worse, medical services, until functionality is restored. Therefore, patient notification must be “without unreasonable delay following the discovery of a breach, and, if applicable, to restore the reasonable integrity of the system[s] compromised.”

Lieu, no stranger to the impact of rising of ransomware attacks on the healthcare industry, proposed the creation of a bill this March, which would require victimized providers to alert their patients of the ransomware attack. In the letter, the two men extend this idea by recommending to the OCR a requirement in which the victimized providers must alert the government, as well, by reporting breaches to the healthcare-based information sharing and analysis organizations (ISAOs) and to the private sector. Continued transparency will assist legal entities in learning more about the attackers, resulting in fewer attacks.

This flutter of governmental activity comes in the wake of increasing attacks this year on the healthcare entities. Case in point, 10 million confidential records, pinched from only four sources (three hospitals and one health insurance database) are currently being sold on the dark web after a hacker put them up for bid this week. The threat is real, and it is good that the government has started to not only recognize that, but to also take steps to fix it.

Schedule an Appointment

Schedule an Appointment

    Our clients are awesome!

    Based on 55 reviews.
    Jeremy Richards
    Jeremy Richards
    2020-03-13
    Petronella provides great advanced digital marketing and automation solutions for my business!
    Kate Swenson
    Kate Swenson
    2020-02-14
    Highly recommended for CMMC certification assistance! Excellent and affordable options for secure data hosting on local infrastructure. 5 stars!
    Tom Matzen
    Tom Matzen
    2020-01-25
    Petronella Technology Group helped us setup our sales and marketing automation, cybersecurity and compliance for our new Blockchain startup. Great to work with! Craig in particular really knows his stuff, can translate into non-tech speak, and has wisdom beyond his years. Highly recommend them.
    Justin Summers
    Justin Summers
    2020-01-14
    Craig is awesome! He is very professional and efficient with his work. I would definitely recommend Petronella Technology to anyone who needs state of the art service.
    Blake Rea
    Blake Rea
    2020-01-14
    Craig is an expert in his field. Impressed by his knowledge, A true pioneer in Cybersecurity. My business is safer thanks to Petronella Tech!
    Robert Friedman
    Robert Friedman
    2020-01-10
    For the last five years Craig has been the Contributing Editor for Cybersecurity for NC Triangle Attorney Law Magazine which I publish. His base of knowledge is always leading edge, pragmatic and early to understand for our readers who are not techies. He is patient and easy to work with.
    Tammy Everett
    Tammy Everett
    2020-01-10
    Craig Petronella, CEO of Petronella Technology Group provided the members of the Defense Alliance of North Carolina expert advice on cybersecurity and NIST compliance. Eye opening experience! Thanks so much!
    Julie Brown
    Julie Brown
    2020-01-09
    Craig and the Petronella Technology Group, Inc. team made HIPAA compliance for my small practice so simple and easy! They helped me with all of my HIPAA training, HIPAA Security Risk Assessment, Penetration Test, and HIPAA secure hosting so I can rest easy.
    Pivot Point
    Pivot Point
    2020-01-03
    Petronella Technology Group helped us with our marketing strategy for our new web startup. Awesome experience!!!!
    Richard Brunet
    Richard Brunet
    2019-12-30

    SCHEDULE AN APPOINTMENT

    Make It Happen Now

    CLIENT SUPPORT

    Don't Feel Stranded

    CONSULTATION

    Get Best Advice

    PAYMENTS

    Make A Payment

    Top