Health Care is always a highest target, please highly consider this message from the Federal HHS Office of Civil Rights. Patches will be required as it is currently a big vulnerability and we want you all to be protected.  Here is the information we are passing on to you:

January 15, 2020

Cyber Notice: Emergency Directive to Mitigate Windows Vulnerabilities

OCR is sharing the following update from the HHS Critical Infrastructure Protection Public-Private Partnership

Healthcare and Public Health Sector

Emergency Directive to Mitigate Windows Vulnerabilities

Update #1

January 14, 2020

This email has been prepared by the HHS ASPR Division of Critical Infrastructure Protection (CIP).

If you observe or experience any impacts to critical infrastructure due to the incident, or have a request for information, please email us at CIP@hhs.gov

The purpose of this bulletin is to notify you of a number vulnerabilities identified in Microsoft Windows operating systems which if not addressed, pose significant threat to the environment. On January 14, 2020, Microsoft released a software patch to mitigate these vulnerabilities in supported Windows operating systems. Subsequently, The Cybersecurity and Infrastructure Security Agency (CISA) released an Emergency Directive and Activity Alert addressing critical vulnerabilities affecting Windows CryptoAPI and Windows Remote Desktop Protocol (RDP) server and client. Some of the vulnerabilities could enable a remote attacker to decrypt, modify, or inject data on user connections DHS has determined that these vulnerabilities pose an unacceptable risk to the Federal enterprise and as a result has issued an emergency directives to all Federal agencies to patch their environment immediately. Due to the seriousness of these vulnerabilities, ASPR CIP strongly recommends that all HPH entities also consider patching their environment as soon as possible. This recommendation is based on the likelihood of the vulnerabilities being weaponized, combined with the widespread use of the affected software across the sector and high potential for a compromise of integrity and confidentiality of information.

Upcoming CISA Call and Additional Resources

The Cybersecurity and Infrastructure Security Agency (CISA) has scheduled a call for Wednesday 1/15 at 2:15 PM ET. This call is targeted at Chief Information Officers/Chief Information Security Officers. Sector Coordinating Councils/Information Sharing Analysis Centers etc.

Additionally, the following resources can be used for more information:

• Activity Alert AA20-014A: Critical Vulnerabilities in Microsoft Windows Operating Systems
• Emergency Directive 20-02: Mitigate Windows Vulnerabilities from January 2020 Patch Tuesday
• CISA Blog: Windows Vulnerabilities That Require Immediate Attention
• National Security Agency Cybersecurity Advisory

We have been having problems for 3 days with the appointment module.  When you schedule an appointment it does not show up.  You have to go out of Procentive and come back in for it to refresh.  Anyone else having this issue?

Im curious to know how other agencies keep track of clients who never open for services, specifically CTSS or TCM. What module/reports do you use to compile this data and if so, do you keep track of the reason the case never opened. Thanks!

Its been a few years since I have billed Testing codes, hoping someone can help me out....

Can these be billed on the same date of service as the DA?

What Clinical Documentation forms are you using to document the use of these codes. 

Has anyone noticed unusual delays in payment processing and ERA's from UCare in recent weeks? 

Is anyone else having issues with faxing from Procentive today?

Does anyone use a different code for travel other than H0046.  Cigna states this code is no longer valid as of 2017 but of course wont advise on an updated code. Just wondering if any one else has come across this.  Client has MA as secondary so I just need them to deny as a non-covered service (if thats the case).  Thanks!

Good Morning!

Is anyone using this feature?  Allowing clients to schedule their appointments through the client portal?  How is it working? Are there any problems?

Replies are Appreciated!

Paula

I am looking for current language for Release of Information. If I recall there was a change in legal language about release of info related to substance use. Does anyone have a current legally approved ROI. I am using one from the sandbox in Procentive but I think the language might be old/outdated?