A security incident at CAP shows why it is important for healthcare providers and their vendors to regularly evaluate their data and business security and the electronic storage of sensitive patient information.
When CAP detected the presence of malware on its internal network, we quickly identified the source of the malware and removed it from the network. After an investigation and complete review of its network, CAP found that no sensitive information, including protected health information, was disclosed to or accessed by any outside parties. CAP was able to identify and limit the potential damage caused by the malware due to its robust security protocols and the efforts of CAP personnel.
Cyber attacks have become an ever-increasing threat and potential disruption to physician practices. It is essential for physicians and groups to regularly assess the strength of the safeguards that protect patient and business data. As part of the assessment, you should remember to:
- Review privacy and security protocols and policies for HIPAA compliance
- Provide regular security and privacy training to all staff and healthcare providers
- Evaluate whether contracted vendors also have in place the necessary safeguards to protect patient and business data
CAP understands that cyber security is an integral part of today’s practices and provides a range of resources to assist our physician practices. As a CAP member, your benefits automatically include the CyberRisk program. For more information on the CyberRisk program, please contact us at (800) 819-0061.