Commentaries and Analyses – Page 691

Report Says Former IRS Employees–Think Lois Lerner–Can Still Peruse Your Tax Returns

Posted on March 24, 2015 by Dissent

Robert W. Wood translates a GAO report that was recently reported on this site: Could Lois Lerner still take a look at your tax returns on IRS computers? It sounds preposterous, but a new watchdog report says former IRS employees still have access to IRS computer systems long after they have no official business with the information. The report is by the U.S….

Too small to hack? No such thing.

Posted on March 23, 2015 by Dissent

Dave Forster reports: Rob Hegedus likens website and other malicious data hacks to cockroaches. “If you see one, there’s 20 you’re not seeing,” said Hegedus, the CEO of Suffolk-based cybersecurity firm Sera-Brynn. […] …. any website, no matter its size or affiliation, can wind up in the crosshairs of an attack. “The mentality of, ‘Well,…

It’s a Whole New Paranoid World

Posted on March 22, 2015 by Dissent

Delia Ephron writes: There is probably nothing about me that is not in the hands of hackers. First, JPMorgan Chase, where I have a bank account, got hacked, then Sony, where I have worked as a screenwriter, then Morgan Stanley, where I have a brokerage account, then Anthem Blue Cross, which has my medical information. Read…

California Health Care Facility Breach Statute Updated: Changes Effective Now

Posted on March 21, 2015 by Dissent

Paula Stannard reminds us: As a result of recent breaches – including breaches of health information and information held by health insurers – a great deal of attention has recently been focused on state data breach notification requirements. Most States have general data breach notification requirements that apply to all data breaches, including those involving…

Despite Wave Of Data Breaches, Official Says Patient Privacy Isn’t Dead

Posted on March 21, 2015 by Dissent

Charles Ornstein of Pro Publica talked with Jocelyn Samuels, director of OCR. You can read his interview on ProPublica.org. Pretty much everything they touched on has been discussed numerous times on PHIprivacy.net, so you may not find anything new in the interview if you were a regular reader of PHIprivacy.net, but I suppose it’s still reassuring…

OCR’s Enforcement of HIPAA’s Privacy and Security Rules Continues with Robust 2014

Posted on March 20, 2015 by Dissent

From the I-must-have-a-different-definition-of-‘robust’ dept.: Douglas Dahl writes: With the news of the recent cyber-attack and resulting data breach at health insurance giant Anthem Inc., the buzz around data security and privacy is again high. The Anthem breach serves as a reminder to those entities subject to the Health Insurance Portability and Accountability Act (HIPAA) that…