Paubox Weekly: Collect patient data securely with Paubox Forms

Hello world,

Today’s Paubox Weekly is 583 words - a 2 minute read.

Want to get this type of content delivered to your inbox every Friday? Subscribe to Paubox Weekly. 

1. Collect patient data securely with Paubox Forms

Paubox Forms allows you to collect patient data securely via a HIPAA compliant form, and it's entirely free with Paubox Email Suite.

Why it matters: HIPAA compliant forms make gathering healthcare data much more manageable.

Online forms must comply with HIPAA

2. NYS clinic ordered to spend $1.2M on security measures

Refuah Health Center was fined up to $450,000 in a settlement and required to invest over $1 million in enhancing its data security.

What happened: Following a 2021 ransomware attack, a forensic investigation found that attackers gained access through a security camera system with a static four-digit code.

Linked to a former IT vendor

3. NCA director dismissed for security breaches on WhatsApp and email

The former director of investigations at the National Crime Agency (NCA) was found guilty of breaching NCA standards by sending classified material via her personal email account and WhatsApp groups.

Going deeper: She was found guilty of declassifying secret material to enable its transmission from an NCA email account to a non-NCA email account.

A second investigation is underway

4. What is ExecProtect?

ExecProtect protects organizations against display name spoofing attacks.

Why it matters: Display name spoofing poses a significant risk to organizations because it targets their email communication systems,

Reduces the likelihood of successful phishing

5. Hospitals seeking end to online tracking enforcement

Multiple healthcare industry groups are urging a Texas judge to end the enforcement of online tracking regulations.

What's new: The groups claim that tracking data is not currently protected by health privacy law, as individuals can visit a hospital website for a variety of reasons that are not necessarily related to the individual’s health status

"A gross overreach by the federal bureaucracy"

6. Novant Health announces $6.6 million settlement over tracking violation

Novant Health faced legal repercussions for the use of pixel tracking. The North Carolina hospital system has agreed to a $6.6 million settlement for alleged privacy violations.

What happened: Approximately 1.3 million individuals had their data disclosed to Meta between May 1st, 2020, and August 12th, 2022. 

Missing data or implicit bias?

Community links

• Does HIPAA apply to doulas? Link
• How HIPAA compliant email improves the patient experience. Link
• Why you should choose highly-rated HIPAA compliant email software. Link
• Laws against healthcare fraud. Link
• Confidentiality when a patient stops mental health medication. Link
• Is recording surgery a HIPAA violation? Link
• Understanding email spoofing and backscatter. Link
• Impact of data breaches on email. Link
• A guide to HIPAA's minimum necessary standard. Link
• What is DNS? Link

January HIPAA Breach Report

• Network server breaches affected the most people in December 2023. 11,151,487 individuals had their data breached.
• Electronic medical record breaches were the second most common breach, with 911,757 people affected.
• Email breaches affected 137,008 people, the third most common breach type.

Read the full breach report

Good reads from around the web

• Zero-Day alert: Update Chrome now to fix new actively exploited vulnerability. Link
• Phone security precautions for behavioral professionals. Link
• OCR ends year with settlements that tread old ground, says new rules are coming. Link
• The chatbot will see you now. Link
• What human anatomy can teach us about cybersecurity. Link

The news last week