A new standard spells out detailed controls for managing health information security.

Improving desktop security is a priority for nearly all hospitals. This is fueled by an increased recognition of the threat unsecured desktops pose as well as a need to meet HIPAA compliance regulations.

Two-factor authentication has not only helped bring an Ohio health care facility into compliance, but streamlined processes and improved data security, reports Greg Masters.

Monitoring and controlling who is accessing data at a health care facility has gotten simpler, reports Greg Masters.

Medical identity theft is increasing, in part because of the wealth of personal information available in medical records. And much of this identity theft is coming from within the medical community.

Palm-vein recognition hits that sweet spot of biometrics between security, cost, accuracy and ease of use that make it an optimal physical and IT access control solution for health care organizations.

A new law in Congress would require every U.S. citizen to have electronic health records by 2014. It would also set up privacy rules for those records, requiring information keepers to notify patients of security breaches.

Just a few months after Google and Microsoft announced they were launching online consumer health platforms, a nonprofit has unveiled a common framework to protect sensitive medical records.

A network engineer and technical services manager for San Diego's Council of Community Health Clinics was sentenced to 63 months in prison on federal hacking charges.

The pressure to move records to an electronic format is stronger than ever, but at the same time the risk and awareness of privacy violations are on the rise.