Ransomware and Cyber Security Resource Center

Ransomware Attack: What You Need To Know

 

Is your operating system and anti-virus software up-to-date? Find out what you can do now, how you can help protect yourself from downloads and e-mail-based ransomware, see an example of what ransomware looks like, and learn what to do if you've been infected.

Find Out How To Protect Your Practice  

Cyber Threat Invading Texas Puts Patient Records at Risk

 

Physicians’ efforts to protect patients’ private medical information could be in jeopardy as Texas medical practices — large and small — face an increasing cyber-attack threat that can leave health records vulnerable. The computer-hack threat, known as ransomware, is software designed to invade and block access to office computer systems that store patient information. To regain access, cyber thieves typically demand ransom payments in exchange for an encryption key to unlock the system. Reports of ransomware extortion have made national headlines and are now occurring in Texas at an increasing rate.

Find Out More  

TMA Information and Resources

TMA is raising physicians’ awareness of the threat of ransomware and will help them manage their security and technology risks. The following resources have been compiled to help physicians better protect their practices from cyber security threats.
 

Articles

Do Your Security Risk Assessment Before Dec. 31 (Texas Medicine Today, Nov. 14, 2019)

Medical Devices Could Be Vulnerable to Hackers, FDA Warns (Texas Medicine Today, Oct. 2, 1019)

New Tool Helps With Security Risk Analysis (Texas Medicine Today, Oct. 30, 2018)

Is Your Patients’ HIPAA-Protected Information Secure? (Texas Medicine Today, March 9, 2018)

Are You Doing Enough to Prevent ID Theft? (Texas Medicine Today, Jan. 30, 2018)

18 Privacy Pitfalls. One Easy (and Free) Mobile Solution (Action, 2017)

The Rise of Ransomware: Surge of Records-for-Ransom Attacks Makes Tightened Digital Security More Important Than Ever (Texas Medicine, August 2016)

Cyber Threat Invading Texas Puts Patient Records at Risk (TMA news release, Aug. 15, 2016)

Is a Ransomware Attack a HIPAA Breach? (TMA Practice E-Tips, July 29, 2016)

Consulting

HIPAA Gap Analysis and Training
A gap analysis and on-site training is conducted by a TMA consultant. We provide training for physicians and staff on HIPAA fundamentals and Texas medical privacy laws.

Education

Cyber Security and Ransomware: Protect Your Practice (On Demand Webinar)
With the risk of data breaches come potential HIPAA violations, while ransomware can disable your practice by encrypting your patient data, making it inaccessible until you pay a ransom. You can take steps to protect your practice. This course will tell you how to mitigate the risk and respond appropriately if you experience a breach or ransomware demand. 

Complying With HIPAA Security (On Demand Webinar)
HIPAA says your practice should have procedures in writing and in use to ensure your patients electronic protected health information remains confidential and safe from leaks or hacking. This webinar explains how this plays out in your practice.

HIPAA Security: Compliance and Case Studies (Publication)
Deciphering the HIPAA Security Rule and creating your comprehensive — and required —compliance program can be one big pain in the neck. It no longer has to be. Using practical, real-world, and relevant case studies, HIPAA Security: Compliance and Case Studies explains how to develop your plan to avoid penalties and other costly mistakes.

Complying With HIPAA and Texas Data Security Laws (On Demand Webinar)
The Texas Medical Privacy Law is even more stringent than its federal counterparts, HIPAA and the HITECH Act. Do you know how these laws apply to you and your pactice?

HIPAA Training for Medical Office Staff (On Demand Webinar)
This webinar provides training for medical office staff to help practices comply with federal and state privacy laws.

Other Resources

What Every Physician Needs to Know: Cyber Security Best Practices - TMLT

Cyber Attack Checklist - OCR
This guide explains, in brief, the steps for a HIPAA covered entity or its business associate to take in response to a cyber-related security incident.

Ransomware and HIPAA Fact Sheet – HHS Office for Civil Rights

Top 10 Tips for Cybersecurity in Health Care – Office of the National Coordinator (ONC)

Cybersecure: Your Medical Practice – Privacy & security training game by ONC

Cybersecure: Contingency Planning – Privacy & security training game by ONC

Security Risk Assessment (SRA) Tool
HHS downloadable tool to help providers from small practices navigate the security risk analysis process.