OCR issues warning on third-party apps
June 14, 2016
— The U.S. Health and Human Services Office for Civil Rights
has issued a warning on the risks of using third-party application software by entities covered by the Health Insurance Portability and Accountability Act.
Noting that "third-party application software security vulnerabilities are on the rise," the office recommends that covered entities and business associates consider taking steps such as:
- Installing software patches and updating versions promptly.
- Reviewing software license agreements for risks that can make patient information vulnerable.
- Looking out for firewall prompts when installing software.
For more detailed information about nationwide security news, visit www.us-cert.gov