Breaking Compliance News Blog

*Free Issue* MPA’s Compliance and HIPAA News Reports

Posted by Margaret Scavotto, JD, CHC on 11/29/22 11:31 AM

Read More

Topics: Training and Education, compliance

*Free Issue* MPA’s Compliance and HIPAA News Reports

Posted by Margaret Scavotto, JD, CHC on 10/27/22 12:06 PM

Read More

Topics: Training and Education, compliance

Earn CEUs with MPA's FREE Compliance Culture Webinar!

Posted by Margaret Scavotto, JD, CHC on 10/25/22 1:31 PM

 

 

Sign up for MPA's FREE Compliance & HIPAA webinars:

All webinars start at 11:00 a.m. CST  and are presented by Margaret Scavotto and Scott Gima

 

We hope you can join us for our final webinar of 2022:

 

Compliance Culture Lessons from the Headlines

November 9, 2022

90 minutes

1.8 CCB CEUs

Boeing. Theranos. The Challenger space shuttle.
 
Every compliance program needs policies, training, reporting, leadership and audits to succeed – but it’s not enough. Federal guidance makes clear that an effective compliance program requires a strong culture to support it. Practical experience also teaches us that culture will make or break a compliance program.
 
We will walk through proven strategies you can take at the employee, management and board levels to cultivate a compliance culture that takes your company in a direction of employee trust, internal reporting, audits with integrity, and compliance strength.
 

 

The Compliance Certification Board (CCB)® has approved these events for up to 1.8 and 1.2 Respectively/ live CCB CEUs based on a 50-minute hour, each. Continuing Education Units are awarded based on individual attendance records. Granting of prior approval in no way constitutes endorsement by CCB of this event content or of the event sponsor.”

Read More

Topics: Training and Education, HIPAA, compliance

Earn CEUs with MPA's FREE Compliance & HIPAA Webinars!

Posted by Margaret Scavotto, JD, CHC on 10/13/22 10:14 AM

 

 

Sign up for MPA's FREE Compliance & HIPAA webinars:

All webinars start at 11:00 a.m. CST  and are presented by Margaret Scavotto and Scott Gima

 

Top Privacy and Security Risks that Can Lead to HIPAA Violations

October 19, 2022

60 minutes

1.2 CCB CEUs

HIPAA breaches can occur everywhere. They come from conversations, from TikTok, from hackers, and from tricky phishing emails. They come from the employee down the hall, from hackers across the country, and from overseas. Later today or tomorrow, there will be new sources of potential HIPAA breaches.

The only way to stay one step ahead is to know and understand the trends and use that knowledge to develop, update or refine your HIPAA security program to mitigate the risk in your organization. Think – Security Risk Assessment and Management Plan. We will walk through top privacy and security risks that can lead to HIPAA violations – and discuss strategies to do something about them.

SIGN UP

 

Compliance Culture Lessons from the Headlines

November 9, 2022

90 minutes

1.8 CCB CEUs

Boeing. Theranos. The Challenger space shuttle.
 
Every compliance program needs policies, training, reporting, leadership and audits to succeed – but it’s not enough. Federal guidance makes clear that an effective compliance program requires a strong culture to support it. Practical experience also teaches us that culture will make or break a compliance program.
 
We will walk through proven strategies you can take at the employee, management and board levels to cultivate a compliance culture that takes your company in a direction of employee trust, internal reporting, audits with integrity, and compliance strength.
 

 

The Compliance Certification Board (CCB)® has approved these events for up to 1.8 and 1.2 Respectively/ live CCB CEUs based on a 50-minute hour, each. Continuing Education Units are awarded based on individual attendance records. Granting of prior approval in no way constitutes endorsement by CCB of this event content or of the event sponsor.”

Read More

Topics: Training and Education, HIPAA, compliance

Earn CEUs with MPA's FREE Compliance & HIPAA Webinars!

Posted by Margaret Scavotto, JD, CHC on 10/5/22 9:50 AM

 

 

Sign up for MPA's FREE Compliance & HIPAA webinars:

All webinars start at 11:00 a.m. CST  and are presented by Margaret Scavotto and Scott Gima

 

Top Privacy and Security Risks that Can Lead to HIPAA Violations

October 19, 2022

60 minutes

1.2 CCB CEUs

HIPAA breaches can occur everywhere. They come from conversations, from TikTok, from hackers, and from tricky phishing emails. They come from the employee down the hall, from hackers across the country, and from overseas. Later today or tomorrow, there will be new sources of potential HIPAA breaches.

The only way to stay one step ahead is to know and understand the trends and use that knowledge to develop, update or refine your HIPAA security program to mitigate the risk in your organization. Think – Security Risk Assessment and Management Plan. We will walk through top privacy and security risks that can lead to HIPAA violations – and discuss strategies to do something about them.

SIGN UP

 

Compliance Culture Lessons from the Headlines

November 9, 2022

90 minutes

1.8 CCB CEUs

Boeing. Theranos. The Challenger space shuttle.
 
Every compliance program needs policies, training, reporting, leadership and audits to succeed – but it’s not enough. Federal guidance makes clear that an effective compliance program requires a strong culture to support it. Practical experience also teaches us that culture will make or break a compliance program.
 
We will walk through proven strategies you can take at the employee, management and board levels to cultivate a compliance culture that takes your company in a direction of employee trust, internal reporting, audits with integrity, and compliance strength.
 

 

The Compliance Certification Board (CCB)® has approved these events for up to 1.8 and 1.2 Respectively/ live CCB CEUs based on a 50-minute hour, each. Continuing Education Units are awarded based on individual attendance records. Granting of prior approval in no way constitutes endorsement by CCB of this event content or of the event sponsor.”

Read More

Topics: Training and Education, HIPAA, compliance

Earn CEUs with MPA's FREE Compliance & HIPAA Webinars!

Posted by Margaret Scavotto, JD, CHC on 9/12/22 11:19 AM

 

 

Sign up for MPA's FREE Compliance & HIPAA webinars:

All webinars start at 11:00 a.m. CST  and are presented by Margaret Scavotto and Scott Gima

Compliance Training for SNFs

September 21, 2022

90 minutes

1.8 CCB CEUs

If the OIG walked into your organization and asked the nearest employee about their compliance program, would they reply with an immediate and clear answer? An awkward pause? An “I don’t know”?

For your employees to pass this test, your compliance program needs a strong training program. A PowerPoint slide presentation at hire and annually is not enough. Training should occur year-round and training programs must include the board, contractors and volunteers

This webinar will provide you with easy-to-use strategies for building an enduring, effective compliance training program.

SIGN UP

 

Top Privacy and Security Risks that Can Lead to HIPAA Violations

October 19, 2022

60 minutes

1.2 CCB CEUs

HIPAA breaches can occur everywhere. They come from conversations, from TikTok, from hackers, and from tricky phishing emails. They come from the employee down the hall, from hackers across the country, and from overseas. Later today or tomorrow, there will be new sources of potential HIPAA breaches.

The only way to stay one step ahead is to know and understand the trends and use that knowledge to develop, update or refine your HIPAA security program to mitigate the risk in your organization. Think – Security Risk Assessment and Management Plan. We will walk through top privacy and security risks that can lead to HIPAA violations – and discuss strategies to do something about them.

SIGN UP

 

Compliance Culture Lessons from the Headlines

November 9, 2022

90 minutes

1.8 CCB CEUs

Boeing. Theranos. The Challenger space shuttle.
 
Every compliance program needs policies, training, reporting, leadership and audits to succeed – but it’s not enough. Federal guidance makes clear that an effective compliance program requires a strong culture to support it. Practical experience also teaches us that culture will make or break a compliance program.
 
We will walk through proven strategies you can take at the employee, management and board levels to cultivate a compliance culture that takes your company in a direction of employee trust, internal reporting, audits with integrity, and compliance strength.
 

 

The Compliance Certification Board (CCB)® has approved these events for up to 1.8 and 1.2 Respectively/ live CCB CEUs based on a 50-minute hour, each. Continuing Education Units are awarded based on individual attendance records. Granting of prior approval in no way constitutes endorsement by CCB of this event content or of the event sponsor.”

Read More

Topics: Training and Education, HIPAA, compliance

Earn CEUs with MPA's FREE Compliance & HIPAA Webinars!

Posted by Margaret Scavotto, JD, CHC on 9/6/22 9:00 AM

 

 

Sign up for MPA's FREE Compliance & HIPAA webinars:

All webinars start at 11:00 a.m. CST  and are presented by Margaret Scavotto and Scott Gima

Compliance Training for SNFs

September 21, 2022

90 minutes

1.8 CCB CEUs

If the OIG walked into your organization and asked the nearest employee about their compliance program, would they reply with an immediate and clear answer? An awkward pause? An “I don’t know”?

For your employees to pass this test, your compliance program needs a strong training program. A PowerPoint slide presentation at hire and annually is not enough. Training should occur year-round and training programs must include the board, contractors and volunteers

This webinar will provide you with easy-to-use strategies for building an enduring, effective compliance training program.

SIGN UP

 

Top Privacy and Security Risks that Can Lead to HIPAA Violations

October 19, 2022

60 minutes

1.2 CCB CEUs

HIPAA breaches can occur everywhere. They come from conversations, from TikTok, from hackers, and from tricky phishing emails. They come from the employee down the hall, from hackers across the country, and from overseas. Later today or tomorrow, there will be new sources of potential HIPAA breaches.

The only way to stay one step ahead is to know and understand the trends and use that knowledge to develop, update or refine your HIPAA security program to mitigate the risk in your organization. Think – Security Risk Assessment and Management Plan. We will walk through top privacy and security risks that can lead to HIPAA violations – and discuss strategies to do something about them.

SIGN UP

 

Compliance Culture Lessons from the Headlines

November 9, 2022

90 minutes

1.8 CCB CEUs

Boeing. Theranos. The Challenger space shuttle.
 
Every compliance program needs policies, training, reporting, leadership and audits to succeed – but it’s not enough. Federal guidance makes clear that an effective compliance program requires a strong culture to support it. Practical experience also teaches us that culture will make or break a compliance program.
 
We will walk through proven strategies you can take at the employee, management and board levels to cultivate a compliance culture that takes your company in a direction of employee trust, internal reporting, audits with integrity, and compliance strength.
 

 

The Compliance Certification Board (CCB)® has approved these events for up to 1.8 and 1.2 Respectively/ live CCB CEUs based on a 50-minute hour, each. Continuing Education Units are awarded based on individual attendance records. Granting of prior approval in no way constitutes endorsement by CCB of this event content or of the event sponsor.”

Read More

Topics: Training and Education, HIPAA, compliance

Earn CEUs with MPA's FREE Compliance & HIPAA Webinars!

Posted by Margaret Scavotto, JD, CHC on 8/31/22 11:49 AM

 

 

Sign up for MPA's FREE Compliance & HIPAA webinars:

All webinars start at 11:00 a.m. CST  and are presented by Margaret Scavotto and Scott Gima

Compliance Training for SNFs

September 21, 2022

90 minutes

1.8 CCB CEUs

If the OIG walked into your organization and asked the nearest employee about their compliance program, would they reply with an immediate and clear answer? An awkward pause? An “I don’t know”?

For your employees to pass this test, your compliance program needs a strong training program. A PowerPoint slide presentation at hire and annually is not enough. Training should occur year-round and training programs must include the board, contractors and volunteers

This webinar will provide you with easy-to-use strategies for building an enduring, effective compliance training program.

SIGN UP

 

Top Privacy and Security Risks that Can Lead to HIPAA Violations

October 19, 2022

60 minutes

1.2 CCB CEUs

HIPAA breaches can occur everywhere. They come from conversations, from TikTok, from hackers, and from tricky phishing emails. They come from the employee down the hall, from hackers across the country, and from overseas. Later today or tomorrow, there will be new sources of potential HIPAA breaches.

The only way to stay one step ahead is to know and understand the trends and use that knowledge to develop, update or refine your HIPAA security program to mitigate the risk in your organization. Think – Security Risk Assessment and Management Plan. We will walk through top privacy and security risks that can lead to HIPAA violations – and discuss strategies to do something about them.

SIGN UP

 

Compliance Culture Lessons from the Headlines

November 9, 2022

90 minutes

1.8 CCB CEUs

Boeing. Theranos. The Challenger space shuttle.
 
Every compliance program needs policies, training, reporting, leadership and audits to succeed – but it’s not enough. Federal guidance makes clear that an effective compliance program requires a strong culture to support it. Practical experience also teaches us that culture will make or break a compliance program.
 
We will walk through proven strategies you can take at the employee, management and board levels to cultivate a compliance culture that takes your company in a direction of employee trust, internal reporting, audits with integrity, and compliance strength.
 

 

The Compliance Certification Board (CCB)® has approved these events for up to 1.8 and 1.2 Respectively/ live CCB CEUs based on a 50-minute hour, each. Continuing Education Units are awarded based on individual attendance records. Granting of prior approval in no way constitutes endorsement by CCB of this event content or of the event sponsor.”

Read More

Topics: Training and Education, HIPAA, compliance

Has your HIPAA security program addressed Callback Phishing?

Posted by Scott Gima on 8/30/22 8:45 AM

callback phishing

What is Callback Phishing?

CrowdStrike, a third-party cybersecurity firm, recently disclosed a new phishing tech support campaign. Hackers send out a fake email from a reputable cybersecurity firm (like CrowdStrike). The email falsely claims your business had a cybersecurity event and is working with the company’s security department to address a possible issue with the employee’s workstation. The letter asks the employee to urgently call a provided phone number to resolve the issue on their workstation.

If a call is made, the hackers will trick the caller into installing remote desktop software. Once given access, the hacker now has access to the user’s workstation and will attempt to move through the network to initiate a ransomware attack.

 

A New Version of an Old Scam

This tech support phishing attack is a new twist on an old scam. A May 2022 blog post discussed a FTC alert on Senior Tech Support Scams, which happened to a family member.

It is highly likely that these emails will get into an inbox because they contain no malicious links or attachments which diminishes the effectiveness of spam or anti-phishing filters.

 

Use your HIPAA training program to increase awareness

Training and education is the most effective method to prevent callback phishing attempts. A phishing reporting policy may be a worthwhile addition to your HIPAA and/or cybersecurity policies. Here are some simple training reminders:

 

  • Do not call the number provided. Assume any email from a well-known cybersecurity firm like CrowdStrike is a phishing email, especially if the email alleges a breach of your environment and requests an urgent call back.
  • Follow your organization’s phishing reporting policy. Call or forward the email to your Security Officer and/or IT department and let them handle the matter. If it is legitimate, they will let you know.
  • Pat yourself on the back, you just prevented a phishing attack.

 

Update your HIPAA Security Risk Analysis

Revisit and update your HIPAA Security Risk Analysis. Add callback phishing as a threat where appropriate. Document your anticipated mitigation strategies including training. Lastly, document when each mitigation effort has been implemented, and include dates so progress can be easily understood.

MPA can handle your HIPAA Security Risk Analysis

The HIPAA Security Risk Analysis is a lot to tackle. We all know it’s even more challenging to accomplish during COVID times. MPA can conduct your HIPAA Security Risk Analysis, saving you time and improving your security. Reply to this email to learn more information.

Read More

Topics: Training and Education, HIPAA, security, risk analysis

Subscribe to MPA’s Compliance Newsletter and Stay on Top of Compliance

Posted by Margaret Scavotto, JD, CHC on 8/25/22 12:42 PM

MPA scours OIG, DOJ, FBI, OSHA, & OCR updates so you don't have to.

We summarize enforcement trends and deliver the latest compliance and HIPAA developments to your inbox with our Monthly Compliance News Report.

Read MPA’s News Report to stay current with compliance news and developments. Then, forward the News Report (or excerpts) to your Board, Compliance Committee, and management team, to keep them informed with little effort. MPA’s clients use the News Report to find ideas for compliance and HIPAA training, and identify areas where policies or audits are needed.

This month’s issue includes:

  • A summary of the 48 OIG health care fraud enforcement cases announced last month
  • Examples of False Claims, Kickback, opioid, and state enforcement from last month
  • Items added to the OIG Work Plan  
  • The latest OIG Advisory Opinion
  • Twelve new HIPAA enforcements
  • OCR guidance on nondiscrimination in telehealth
  • The OIG's audit report of nursing home life safety and emergency preparedness noncompliance
  • An update on the Uber breach
  • Updates to Medicare's Care Compare website
  • ... and more!
  • You can read a sample report here

Price: $300/year

Cancel any time.

Subscribe today

 

Read More

Topics: Training and Education, compliance

    Privacy Policy           Terms of Use