Skip to Content
Medical professionals looking at their computer.
Article

OCR ransomware settlements: A proactive cybersecurity approach is key

May 7, 2025 / 6 min read

Healthcare organizations should take ransomware developments as a clear call to elevate their cybersecurity strategies and compliance, risk management, breach response, and organizationwide accountability. Joe Oleksak shares insights with Greg Freeman at Relias Media on recent OCR settlements.

Joe Oleksak, partner and leader of Plante Moran’s cybersecurity services practice, discusses the key strategies and lessons learned from recent Office of Civil Rights (OCR) settlements.

In the article, he explores challenges faced by healthcare organizations with a wave of security breaches and ransomware developments. Organizations are making efforts to improve risk management practices, cybersecurity protections, and organizationwide accountability. He provides key takeaways from the settlements and notes common points of failure while providing strategies to address them.

“OCR’s recent enforcement actions and proposed HIPAA updates reflect a clear emphasis on proactive security measures and stricter accountability.” says Joe. “The significant number of healthcare breaches in 2024, which tested patient trust and organizational resilience, will continue to shape oversight throughout 2025 and beyond.” Read the full article here.

Read More

Related Thinking