Another small medical practice has closed its doors following a ransomware attack. This time, it was Alpha Medical Centre, a Georgia-based clinic that served its patients for years before being forced to shut down permanently after cybercriminals stole patient data and threatened to leak it. Sadly, this isn’t rare anymore. We’re seeing it happen again…
If you’re running a small healthcare practice—maybe you’re a dentist, podiatrist, therapist, pharmacist, or own a small lab—you might think you’re flying under the radar. Unfortunately, that’s not the case. Healthcare was the most targeted industry for cyberattacks last year. According to Microsoft, one in three small to medium-sized businesses were hit with a cyberattack—and…
Just the other day, one of our business development managers shared an interesting conversation with me. He had reached out to a solo practitioner—a licensed mental health counselor—who works in a shared office space. This practitioner confidently stated that he was not required to conduct and document an annual HIPAA Risk Assessment. His reasoning?He uses…
A recent report by risk advisory firm Kroll (Kroll Data Breach Outlook 2025: Healthcare Most Breached Industry) reveals that healthcare has become the most frequently breached industry, accounting for 23% of all data breaches—up from 18% in 2023. Kroll also noted weak incident response practices, which not only amplify the damage of breaches but also…
New York’s new Health Information Privacy Act (HIPA) is poised to become one of the strictest state laws governing how health information is processed and shared. This comprehensive approach means that many organizations, some of which might not have previously considered themselves subject to health information privacy regulations, will need to re-examine their data handling…
Introduction In today’s fast-moving, technology-driven world, businesses can no longer afford to treat IT as just a support function. Instead, technology must be a strategic enabler of growth, innovation, and competitive advantage. However, many small and mid-sized businesses (SMBs) struggle with balancing IT strategy and IT operations—often due to budget constraints or a lack of…
Navigating the Challenges of the Security Rule Since the publication of the Security Rule in 2005, HIPAA Risk Assessments have been a mandatory requirement for covered entities. Despite this long-standing necessity, many entities—particularly smaller ones—struggle to conduct comprehensive and meaningful risk assessments annually. This article explores the significance of these assessments and the challenges covered…
