Recent security incidents involving ransomware attacks on vendors highlight risks posed by business associates. Center for Orthopaedics Specialists is notifying 85,000 patients that their data might have been compromised in a ransomware attack on an unnamed IT vendor. The other incident involves Wichita, Kansas-based medical transcription services vendor MEDantex, which appears to have leaked patient records due to an unsecured web portal. Security experts say both incidents spotlight the risks posed to HIPAA covered entities by their vendors.”]
Source: https://www.healthcareinfosecurity.com/recent-ransomware-incidents-serve-up-lessons-a-10921