Administrative Simplification HIPAA Regulations Fact Sheet

HIPAA Administrative Simplification regulations include a number of provisions designed to streamline and simplify health care transactions. Through the use of standards, operating rules, unique identifiers, and code sets, these provisions can help the health care community save time and money. The National Standards Group (NSG), on behalf of the Department of Health and Human Services (HHS), has created a new fact sheet that summarizes a number of these important provisions. The fact sheet also includes links directly to the regulations for easy reference.


CISA, NSA, FBI and International Cyber Authorities Issue Cybersecurity Advisory to Protect Managed Service Providers (MSP) and Customers

WASHINGTON – The Cybersecurity and Infrastructure Security Agency (CISA), in partnership with the United Kingdom’s National Cyber Security Centre (NCSCUK), Australian Cyber Security Centre (ACSC), Canadian Centre for Cyber Security (CCCS), New Zealand National Cyber Security Centre (NZ NCSC), National Security Agency (NSA), and Federal Bureau of Investigation (FBI) released an advisory today with cybersecurity best practices for information and communications technology (ICT), focusing on enabling transparent discussions between managed service providers (MSPs) and their customers on securing sensitive data.


Limited Waiver of HIPAA Sanctions and Penalties as a Result of the Consequences of Wildfires and Straight-line Winds in the State of New Mexico

Severe disasters impose additional challenges on health care providers. Often questions arise about the ability of entities covered by the HIPAA regulations to share individuals’ health information, including with friends and family, public health officials, and emergency personnel. As summarized in more detail below, the HIPAA Privacy Rule allows patient information to be shared to assist in disaster relief efforts, and to assist patients in receiving the care they need. In addition, while the HIPAA Privacy Rule is not suspended during a public health or other emergency, the Secretary of HHS may waive certain provisions of the Privacy Rule under section 1135(b)(7) of the Social Security Act.

Coalition of hospitals, health plans and others urge for stronger guidance around third-party apps

The Confidentiality Coalition and the Workgroup for Electronic Data Interchange has sent a letter to the secretaries of Commerce and Health and Human Services voicing concerns about the potential misuse of patient health information by unregulated third-party applications.


US officials ramp up warnings about Russian cyberattacks

Top U.S. officials are ramping up their warnings about possible Russian cyberattacks on critical infrastructure as the war in Ukraine escalates. In an interview with “60 Minutes” on CBS, Deputy Attorney General Lisa Monaco and Cybersecurity and Infrastructure Security Agency Director Jen Easterly discussed the threats they’re seeing and the various ways their respective agencies are preparing for potential Russian cyberattacks.