Paubox blog: HIPAA compliant email made easy

Paubox customers: Paubox Zoom social mixer (April 2024)

Written by Dean Levitt | April 19, 2024

The Paubox Zoom social mixer for April 2024 was a roundtable discussion between Paubox customers covering topics like ChatGPT and HIPAA, new cybersecurity threats, the impact of inflation on margins, and DLP best practices. 

 

What happened

After our recent Customer Advisory Board meeting, we followed their advice and kept this social mixer open-ended rather than focused on a specific topic. We kicked it off by asking mixer attendees what was on their minds or what they needed help with, and it spurred fascinating group discussions.

The first topic was, unsurprisingly, artificial intelligence, and the discussion revolved around employee training and acceptable use policies. 

Another topic was new cybersecurity attacks, particularly social engineering and new phishing techniques like pharming and "pig slaughtering," where a victim gets a random text from someone asking a question. It often includes romance scams, particularly targeting young soldiers in war zones. 

Attendees again shared tips on using Paubox ExecProtect and Geofencing to mitigate phishing scams. We also looked at innovative Paubox Email API use cases and Paubox Texting ideas.

 

Our takeaways:

  • IT departments will have to monitor how employees are using ChatGPT. 
  • Creating an Acceptable Use Policy for AI is top of mind.
  • Microsoft Copilot appears to be a top choice for AI.
  • A recommended use for AI is translating documents from English to other languages.
  • ChatGPT will now sign a BAA for enterprise API users but for specific endpoints, while Microsoft's BAA covers CopilotGoogle's BAA covers Gemini, but only if used within the Google Workspace account.
  • There's no precedence regarding HIPAA and AI, and it's not feasible to block all instances of AI, so healthcare organizations need to develop thoughtful policies.
  • The number of cyberattacks hasn't gone up, but the amount of people impacted by the attacks has increased.
    • Hackers are getting smarter about who, what, and how they attack.
  • Paubox customers see a massive jump of bad emails blocked after using Geofencing; 1000+ emails more a month for some customers.
  • Pharming is becoming more common, and a suggested tip is to brand your Microsoft login so that employees know they're logging into the right place.
  • 54% of CISOs struggle to convince the board to prioritize cybersecurity investments. 12% of C-suite executives only discuss cybersecurity when a breach occurs.
  • No More Ransom has decryption tools that could be useful in the event of an attack and was recommended.

 

The bottom line: Paubox customers use a broad range of tools and strategies to keep their email HIPAA compliant, protect their organizations, and find efficiencies. 

See alsoOur playbook for Zoom social mixers

See also: HIPAA Compliant Email: The Definitive Guide