PrivaPlan Associates
LightNews LightNews
banner
privaplan.bsky.social
PrivaPlan Associates
@privaplan.bsky.social
8 followers 44 following 64 posts
We provide end-to-end privacy & security solutions, helping businesses stay safe & compliant. With over 20 years of experience, especially in healthcare, we’re trusted experts who tackle vulnerabilities head-on to protect sensitive information.
Posts Media Videos Starter Packs
Pinned
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · Apr 17
We just dropped an essential guide for generative AI in health care without compromising #HIPAA Security compliance.

If you are working on #AI or AI Ambient Scribes, this is your playbook for doing it securely!

Learn more here: buff.ly/Ru5GwDq
1
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 2d
Learn more from the National Cybersecurity Alliance about updating your software.

buff.ly/Z0CDH9C

#CybersecurityAwarenessMonth
How to Update Your Software - National Cybersecurity Alliance
Software updates are critical to keeping your systems secure, and we’ll dive into how to find, download, and install updates.
www.staysafeonline.org
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 2d
✔️ Replace unsupported devices: When updates stop, your device is no longer secure. Replace it or keep it offline for non-sensitive use only.

#CybersecurityAwarenessMonth
1
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 2d
✔️ Make updates part of your routine: Check for updates weekly or at least monthly. Don’t hit “Remind Me Later”—updates usually take just minutes and keep your devices secure.

#CybersecurityAwarenessMonth
1
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 2d
✔️ Watch for fake update scams: Ignore pop-ups claiming your system is outdated. Close your browser and avoid suspicious sites or links.

#CybersecurityAwarenessMonth #HIPAA #HIPAASecurity
1
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 2d
✔️ Only update from trusted sources: Never click update links in pop-ups or emails. Use official app stores or the developer’s website to install software updates.

#CybersecurityAwarenessMonth #CyberResilience
1
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 2d
Update Your Software and Apps Safely to Stay Safe Online

✔️ Enable automatic updates—but don’t rely on them completely. Verify settings quarterly and restart your devices weekly to make sure updates install properly.

#CybersecurityAwarenessMonth #DigitalSafety
1
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 2d
Hackers are always looking for vulnerabilities to exploit, and outdated software is an easy target. One of the best ways to protect yourself online is by keeping your software and apps up to date.

We have 5 steps for safe software updates!

#CybersecurityAwarenessMonth #HealthcareSecurity
1
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 6d
Forgotten service accounts can be weak spots for intruders. Turn them into assets by making them part of your security strategy! Know your vulnerabilities and focus on prevention.

Read our article to learn more! buff.ly/IbP5msy #CyberSecurity #HIPAA
The Hidden Danger of Forgotten Service Accounts | PrivaPlan
Forgotten, out-of-date or orphaned, service accounts refer to accounts whose credentials have expired or are no longer valid.
buff.ly
1
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 20d
AI-aided attacks are getting more creative. Microsoft just caught a phishing campaign where criminals hid AI-generated code inside an SVG file to slip past traditional defenses.
The takeaway? Layered security + employee awareness are critical.
buff.ly/g1RFcbt
AI vs. AI: Detecting an AI-obfuscated phishing campaign | Microsoft Security Blog
Microsoft Threat Intelligence recently detected and blocked a credential phishing campaign that likely used AI-generated code to obfuscate its payload and evade traditional defenses, demonstrating a…
buff.ly
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 22d
AI makes phishing more convincing.

But humans who slow down, question urgency, and report suspicious activity are still the strongest line of defense. #CyberResilience #SecurityCulture
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 22d
Training + awareness is still the key for success

Remind your workforce to:
1. Double-check sender addresses
2. Avoid unknown links
3. Report suspicious messages immediately to IT
1
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 22d
The result? Even vigilant employees can get tricked.

AI-aided phishing doesn’t just imitate trusted sources — it adds urgency: “Update your password now!” or “Act fast!”

That urgency makes us drop our guard.

#Cybersecurity #DigitalSafety
1
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 22d
Smarter, Faster, Sneakier. AI-Aided phishing scams are on the rise. Scammers are now using AI to craft emails so convincing they look like they’re from your boss, IT team, or even your customers. #CybersecurityAwarenessMonth #HealthcareSecurity
1
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 23d
It's time to go passwordless! Weak or stolen passwords cause 80% of breaches. Passkeys are more secure and easier to use.

• No passwords to remember
• Sign in with your face, fingerprint, or PIN
• Built into most phones, computers, and browsers

#cybersecurityawareness #passwordless
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 26d
Healthcare organizations using web tracking technologies are starting to are face fines

The risks aren’t just financial. They’re legal. Regulatory. Reputational. When patient trust is at stake, the stakes are always higher. Learn more in our new article.
Mount Sinai Settles Web Trackers Privacy Claim for $5.3M | PrivaPlan
Healthcare organizations are learning that they must be aware of web trackers and have a clear understanding of what data is being collected.
buff.ly
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 26d
Security isn’t about making things harder for employees—it’s about making things impossible for attackers.
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 26d
✅ The future is in stronger authentication:

Multi-factor authentication (preferably phishing-resistant)

Password managers to generate and store unique logins

Short-lived tokens and modern identity protections

#CybersecurityAwareness
1
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 26d
If your organization is still clinging to old habits—short, simple logins or recycled credentials—it’s not a matter of if but when those defenses fail.

#CybersecurityChampion
1
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 26d
Why Passwords Won’t Survive the AI Era

Hackers don’t need to guess anymore. Armed with AI and billions of leaked credentials, they can break through weak or reused passwords faster than ever.

#CyberSecurityAwarenessMonth
1
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · 28d
Are You Ready to Go Passwordless?

Weak or stolen passwords cause 80% of breaches. There’s a safer, easier way: passkeys.
No passwords to remember - Your info is stored securely on your device, so even if hackers breach a website, your account stays protected. #CybersecurityAwarenessMonth
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · Sep 24
The Joint Commission and the Coalition for Health AI released new guidance on the responsible use of AI in healthcare.

Get details in our latest article, plus learn how to ensure HIPAA compliance when using AI in healthcare. #AIhealthcare #HIPAA #AI #healthcare

privaplan.com/joint-commis...
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · Aug 19
Michigan Medicine sent postcards this summer that potentially exposed patient health data. This incident highlights the importance of staying HIPAA compliant with all mail pieces. Get the details in our latest article.
Postcard Error May Have Exposed PHI at Michigan Medicine | PrivaPlan
A postcard sent without an envelope possibly exposed patient health information, highlighting the importance of staying HIPAA compliant with all mail pieces.
privaplan.com
2
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · Aug 12
AI in healthcare security works in seconds. Your HIPAA compliance plan? It might take months. That gap creates risk.

Our new article breaks down:
✅ The biggest AI compliance hurdles healthcare orgs face right now
✅ Practical steps to align with the #HIPAA Security Rule
The AI Security Surge: Why Compliance with the HIPAA Security Rule Can’t Wait | PrivaPlan
In this article, we explore why HIPAA compliance is more important in the era of AI and how organizations can effectively apply the HIPAA Security Rule to...
buff.ly
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · Jul 25
Is your organization adequately protecting ePHI? A New York surgery center faces a $250,000 fine and a two-year corrective action plan after OCR identified gaps in risk analysis and timely breach reporting. Discover what went wrong and what HIPAA entities should do: buff.ly/rzRBXzt #HIPAA #ePHI
Syracuse ASC Pays $250K Fine for Alleged HIPAA Violations | PrivaPlan
A New York surgery center has agreed to pay a $250,000 penalty for potential violations of the HIPAA Security and Breach Notification Rules.
buff.ly
privaplan.bsky.social
PrivaPlan Associates @privaplan.bsky.social · Jul 2
Federal agencies are warning of potential cyber risks from Iranian-affiliated groups targeting key U.S. infrastructure, including healthcare, ahead of July 4th. Cyberattacks often occur during holidays due to distractions and reduced staffing. Learn more in our latest article:
Health Care Sector Urged to be Cyber Vigilant Ahead of July 4th | PrivaPlan
Leading up to Independence Day, health care organizations are advised to brace for potential cyberattacks from Iranian state-sponsored or affiliated actors.
buff.ly