Top Menu

HIPAA Security Reminder of the Week

Dangers of Instant Messaging

Instant Messaging (IM) is inherently insecure.

IM providers maintain and control user messages, logs and connection information on their servers. Although providers offer some degree of encryption, there have been instances of IM user logs being captured and used for unethical or criminal purposes.

IM is subject to “eavesdropping” and hackers can use IM as an entry point to compromise data residing on a computer. IM also serves as an entry point for viruses, worms, Trojans and other forms of malware.

Do not use IM to communicate any confidential or sensitive information such as Electronic Protected Health Information (ePHI).

Do not install IM applications on any device that contains or accesses ePHI.