HHS Resumes HIPAA Audits Amid Surge in Cybersecurity Threats
BankInfoSecurity
|
Contributed by: Drex DeFord
Summary
The U.S. Department of Health and Human Services (HHS) is restarting HIPAA compliance audits for the first time since 2016-2017, with a focus on cybersecurity threats, particularly ransomware and hacking. These audits will involve 50 healthcare organizations and business associates, driven by a significant rise in reported hacking and ransomware incidents. The initiative aims to evaluate compliance with the HIPAA Security Rule provisions essential for preventing data breaches, responding to a notable 30% increase in hacking and a 45% rise in ransomware attacks from 2020 to 2024. Specific details regarding the audit criteria and selection process have not been disclosed, as the project resumes after a period of dormancy due to resource limitations.
