• 1-(800) 510-9053
  • 1-(415) 259-6503

Administrative Safeguards Need to be Comprehensive and Regularly Updated

Sep8



Healthcare organizations must guarantee that they have comprehensive and regularly updated administrative safeguards, such as user authentication procedures and proper access control. A failure to have these in place, or having outdated ones, could potentially lead to a data breach. This was proven in a recent Pennsylvania federal grand jury case, where a man was indicted on charges stemming from a healthcare hacking incident in 2013. A Texas man was indicted on Intentional Damage to a Protected Computer and Wire Fraud, and potentially faces a maximum total sentence of 30 years in prison, a fine of $500,000 or both, according to a Western District of Pennsylvania US Attorney’s Office statement.

“[Brandon A. Coughlin] intentionally hacked and damaged 13 servers operated by a local healthcare facility and engaged in a scheme to defraud that healthcare facility by using its purchase card to order merchandise from Staples,” the press release read. The facility hired Coughlin in January 2013 to work as an in-house computer systems administrator, although Coughlin resigned one month later at the management’s request.1

“Using the administrative passwords, he knew from his employment, on September 18, 2013, Coughlin hacked the computer network of the healthcare facility, disabled all administrative accounts needed to control any and all of the computer servers of the healthcare facility, and deleted users’ network shares, business data, and patient health information data, including patient medical records, causing a loss of more than $5,000.00,” the Attorney’s Office explained.1

Telegenisys has instituted physical, technical and administrative safeguards to ensure that its client’s data is safe from all unauthorized access. This includes all forms of medical records and electronic private health information. know more…


1 http://healthitsecurity.com/news/administrative-safeguard-need-highlighted-in-tx-indictment



Related Posts

  • 44
    Data Integrity in Healthcare Best Practices to Prevent Common EHR Errors Our free guide shows how to prevent corruption of Electronic Health Records (EHR) caused by human and automated errors. If you use EHR to manage care, and you should, then you owe it to your patients to ensure that…
    Tags: data, records, facility, health, telegenisys, medical, client, ensure, healthcare, electronic
  • 41
    For the first time, the Office of Civil Rights (“OCR”) penalized a covered entity for failure to implement audit procedures to review, modify, and/or terminate users’ right of access. More than 100,000 individuals had their electronic Protected Heath Information (“ePHI”) records impermissibly disclosed. The settlement agreement with Memorial Healthcare System…
    Tags: failure, $, electronic, access, fine, office, healthcare, records, health, breach
  • 33
    When it comes to maintaining HIPAA compliance, both healthcare providers and their chosen third-party vendors – or business associates – need to work together for comprehensive and current health data security. According to Tim Feldman, Vice President and General Manager of Healthcare Compliance & Reimbursement at Wolters Kluwer Legal &…
    Tags: data, healthcare, ensure, telegenisys, organizations, business, work, health

no Comment

Telegenisys Inc. © Copyright 1999-2017 All Rights Reserved             Privacy Policy  |  Site Map