After conducting testing at 13 CMS data enters, HHS' Office of Inspector General found the centers have tools and techniques that place the centers at risk for cyberattacks, according to Health Data Management.
Here are six things to know:
1. OIG found cyber criminals did not breach the vulnerabilities at that time.
2. However, OIG did report the vulnerabilities could have allowed unauthorized access to sensitive, identifiable information.
3. The report also states, "exploitation could have compromised the confidentiality, integrity and availability of CMS' data and systems."
4. The investigation found CMS' vulnerabilities were due to improper configurations and not upgrading their systems, despite CMS previously reporting updates were underway.
5. OIG advises CMS to update its security controls, but the OIG has not yet given detailed recommendations in its report.
6. CMS supported OIG's findings in its written response to the report. CMS stated it addressed many of these issues and is currently working to solve the other issues.
More articles on coding & billing:
Group insurance director: A solution to rising cost of group insurance: 4 thoughts
With payers bowing out of ACA exchanges, the Obama administration makes moves on a new advertising campaign
Lawyer: Does digital health need reimbursement?: 5 thoughts