Pittsburg, PA

Tucker Arensberg, P.C.
Tucker Arensberg, P.C.
One PPG Place, Suite 1500
Pittsburgh, PA 15222
(412) 566-1212
(412) 594-5619
Directions to Pittsburgh

Harrisburg, PA

Tucker Arensberg, P.C.
Tucker Arensberg, P.C.
300 Corporate Center Drive, Suite 200
Camp Hill, PA 17011
(717) 234-4121
(717) 232-6802
Directions to Harrisburg

New York, NY

Tucker Arensberg, P.C.
Tucker Arensberg, P.C.
250 Park Avenue, Suite 1508, 7th Floor
New York, NY 10171
(212) 739-7910
(212) 739-9607
Directions to New York

Foster City, CA

Tucker Arensberg, P.C.
Tucker Arensberg, P.C.
1098 Foster City Boulevard, Suite 106 #700
Foster City, California 94404
(650)208-2701
Directions to Foster City

Widget Title

  • People
  • Practice Areas
  • News + Insights
    • News
    • Articles
    • Speaking
  • Office Locations
    • Pittsburgh
    • Harrisburg
    • New York
    • Foster City
  • About the Firm
    • Overview
    • Careers
    • Diversity
    • Women@Tucker
    • Affiliations
    • Pro Bono & Community

Title

  • Skip to primary navigation
  • Skip to content
  • Skip to primary sidebar

Tucker Arensberg, P.C.Tucker Arensberg, P.C.

Attorneys in Pittsburgh, Harrisburg, New York City

  • People
  • Practice Areas
  • News + Insights
  • About Our Firm
  • COVID 19: Answers to Business Challenges
ShareBookmarkPDF

Can Cryptojacking Result in a Databreach?

Articles May 21, 2018

Healthcare organizations should be aware of a new method, referred to as “cryptojackng,” that hackers are using to exploit the systems and networks they infiltrate.  Hackers use cryptojackng methods to siphon energy resources from a computer’s processor which they then use to mine for bitcoins, a popular form of crypto-currency.

While the goal of cryptojacking is to obtain valuable energy resources, not the data that may be stored on the targeted system, healthcare organizations still need to be aware of this threat and take steps to prevent hackers from penetrating their systems.

Cryptojacking presents risks to a healthcare organization, not only because of the potential drain on the healthcare organization’s energy resources, but also because cryptojacking could still met the definition of a security incident under the Health Insurance Portability and Accountability Act (“HIPAA”).

HIPAA defines a security incident as “the attempted or successful unauthorized access, use, disclosure, modification, or destruction of information or interference with system operations in an information system.” (45 CFR 164.304).  Cryptojacking does involve the interference with a system’s operation.  So, cryptojacking could trigger a reporting requirement under HIPAA.

If any healthcare organization suspects their systems may be the victim of a cryptojacking activity, it should immediately engage its IT department and conduct a forensic analysis to determine the scope and nature of any such activity and if any HIPAA reporting obligations have been triggered.

Primary Sidebar

Related

Topics

  • cryptojacking
  • Health Care IT
  • HIPAA
© 2023 All Rights Reserved|Tucker Arensberg, P.C.|Log in|Powered by Content Pilot
  • Sitemap
  • Disclaimer
  • Privacy Policy