Skip Navigation

Hacking is a significant threat to health care data and attacks can be very costly. Recently, an orthopedic clinic serving 138,000 patients annually, paid $1,500,000 as part of a settlement agreement with the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services. The clinic was attacked by a hacker and had a large database stolen by a hacker which included patients’ names, dates of birth, social security numbers, medical procedures, test results, and health insurance information. OCR’s investigation discovered systemic noncompliance with the HIPAA Privacy and Security Rules.

Read more – Orthopedic Clinic Pays $1.5 Million to Settle Systemic Noncompliance with HIPAA Rules


CITI Program’s HIPAA and Information Security Courses

Health Privacy (HIPAA)
This course is intended to cover the core elements of the federal Health Insurance Portability and Accountability Act (HIPAA) requirements.
View Course Details

Information Security
This course provides information on basic techniques for data and device security, including email and mobile devices.
View Course Details