HIPAA, Ransomware & Cyber Criminal Chaos Prevent, Prepare, Respond and Recover

Duration: 90 Minutes
Instructor: Paul R. Hales
Webinar Id: 801065


One Attendee
Unlimited Attendees ?

This HIPAA and Ransomware Training will discuss how to use the HIPAA rules to prevent, prepare, respond and recover from Ransomware attacks, Ransomware is the easiest and safest way for cyber-criminals to extort money from the Healthcare Industry.


"This Course is approved for 1 general credit from the Nevada Board Of Continuing Legal Education."

Overview: This webinar will explain about Ransomware attack on a Covered Entity or BA that encrypts PHI is presumed to be a HIPAA Breach according to the U. S. Department of Health and Human Services (HHS).

  • Ransomware including new, more treacherous varieties used by cyber-criminals to attack the Healthcare Industry
  • HIPAA Rules that apply to Ransomware attacks
  • "Social Engineering" tricks criminals use to sneak Ransomware into Electronic Information Systems
  • What to do if your organization suffers a Ransomware attack
  • Best practices to:
    • Prevent
    • Prepare
    • Respond
    • Recover from Ransomware Attacks

Why should you Attend: Healthcare is the biggest target for Ransomware attacks in 2017. New types of Ransomware are particularly dangerous. They not only lock up your information system - they steal Protected Health Information (PHI).Covered Entities and Business Associates of all types and sizes are prime Ransomware targets because disruption of healthcare operations, even for a brief period, can result in catastrophic harm to patients. Criminal hackers don't need to be sophisticated technology to mount a Ransomware attack - they simply trick employees to open a "phishing" email or click on an Internet link. Ransomware is the easiest and safest way for cyber-criminals to extort money from the Healthcare Industry.

Areas Covered in the Session:
  • Introduction - Course Agenda and Objectives
  • What is Ransomware?
  • Why is the Healthcare Industry a Prime Target?
  • HIPAA Law and HIPAA Rules that apply to Ransomware Attacks
  • Covered Entity - Business Associate Relationship, Responsibilities, Interdependent Liabilities
  • What to Do if (when) your organization suffers a Ransomware Attack
    • Preliminary Description - HIPAA Breach Risk Assessment
  • Best Practices to Prevent a Ransomware Attack
  • How to Prepare for a Ransomware Attack
  • How to Respond to a Ransomware Attack
    • To pay or not to pay?
    • Law Enforcement
  • How to Recover from a Ransomware Attack
  • How to do a HIPAA Breach Risk Assessment - Demonstration
  • What to do if the Ransomware Attack caused a HIPAA Breach
  • Step-by-Step Breach Notification Requirements
    • Documentation
    • Notifications - Fewer than 500 Individuals affected
    • Notifications - More than 500 Individuals affected
  • Questions, Answers, Discussion

Learning objectives: How to use the HIPAA Rules to Prevent, Prepare, Respond and Recover from Ransomware Attacks

Who Will Benefit:
  • Health Care Providers - Hospitals
  • Multi-Specialty Medical Groups
  • Nursing Homes
  • Long Term Care - Assisted Living Facilities
  • Physicians (M.D.s and D.O.s)
  • Dentists
  • Optometrists
  • Chiropractors
  • Physical Therapists
  • Podiatrists
  • Health Plans including Employer Sponsored Health Plans
  • Third Party Administrators - Insurance Brokers
  • Healthcare Practice Administrator Companies
  • Healthcare Record Storage and Retrieval Companies
  • All Business Associates of Health Care Providers and Health Plans

Speaker Profile
Paul R. Hales, J.D. is widely recognized for his expert knowledge and ability to explain the HIPAA Rules clearly in plain language. Paul is an attorney licensed to practice before the Supreme Court of the United States and a graduate of Columbia University Law School with an international practice in HIPAA privacy and security. He is the author of all content in The HIPAA E-Tool®, an Internet-based, complete HIPAA compliance solution with separate editions for Covered Entities, Business Associates, Health Plans and Third Party Administrators.

You Recently Viewed