HIPAA

ALERT!!! Sonicwall, the manufacturer of a security product many practices rely on has just had a data breach. Sonicwall responded by recommending that ALL CUSTOMERS who use a MySonicWall account reset their passwords immediately. If you have a MySonicWall account, please do this now. The data exposed can provide a hacker with full access to your network and your patient data.

FDA Recalls September 16 - 23, 2025

Syracuse ASC, also known as Specialty Surgery Center of Central New York, has been fined $250,000 to resolve violations of the HIPAA Security Law and Breach Notification Law. OCR was able to confirm that the incident was a ransomware attack using the PYSA variant. The data breach dates back to March 2021 where unauthorized access to ePHI of a reported 24,891 patients. The threat potentially stole names, birth dates, Social Security numbers, financial data, and clinical information. The breach was not reported to the affected individuals until October 2021.

The Minneapolis Veterans Affairs Medical Center has experienced two distinct and significant data breaches within a seven-month period, revealing multifaceted vulnerabilities in its data protection protocols.

The approaching end-of-life (EOL) date for Windows 10, set for October 14, 2025, represents a critical juncture for organizations worldwide. The UK's National Cyber Security Centre (NCSC) has issued an urgent advisory that this is strategic and imperative for long-term cybersecurity. Migration to a supported and more secure platform like Windows 11 prior to the date above is essential to mitigate significant, foreseeable risks.

FDA Recalls August 25 - Sept 2, 2025

FDA Recalls August 12 - 18, 2025

CMS Proposes Physician Payment Rule to Significantly Cut Spending Waste, Enhance Quality Measures, and Improve Chronic Disease Management for People with Medicare.

FDA Recalls July 14, 2025 - July 22, 2025

Settlement Marks OCR’s 13th Ransomware Enforcement Action and 9th Enforcement Action in OCR’s Risk Analysis Initiative