Take full exam for free

A nurse at Cedar Bend Hospital always seems to forget her password. As a solution, she has written her password on a piece of paper and keeps it taped to her monitor at the nursing station for ease of access. A patient noticed the note with the password and, when the nurse was away from her desk, he accessed his own records.What could have been done to prevent protected health information from being compromised in this scenario?

A.

The nurse should use a more complex password that includes a combination of numbers, letters, and symbols.

B.

The nurse should keep her password in a private location that only she can access.

C.

The hospital should ask all employees to change their password frequently.

D.

The hospital should require all employees to download antivirus software onto their work computers.

Answer and Explanation

The Correct Answer is B

A. The nurse should use a more complex password that includes a combination of numbers, letters, and symbols. – A complex password is generally good security practice but doesn’t help if the password is left in an accessible place.

 

B. The nurse should keep her password in a private location that only she can access. – Keeping the password in a private, secure location would prevent unauthorized access, ensuring it’s not visible to patients or others.

 

C. The hospital should ask all employees to change their password frequently. – Regularly updating passwords can help prevent security breaches but doesn’t solve the issue of visible passwords.

 

D. The hospital should require all employees to download antivirus software onto their work computers. – Antivirus software helps with malware protection but doesn’t prevent unauthorized access due to visible passwords.


View Related questions

Correct Answer is A

Explanation

A. Patient portals are designed to contain the same information available to the primary care provider. – Patient portals do contain much of the same information available to the primary care provider, such as test results, medication lists, and visit summaries. This can help the patient better understand their treatment plan and clarify any instructions given by the physician.

B. Patient portals are designed to display metrics and qualifications similar to an electronic health record (EHR). This patient can refer to their portal to make sense of the plan. – While portals do provide access to health information, they are not primarily for understanding treatment plans without context or explanation.

C. Patient portals typically do not contain sensitive information that the patient can access. – This is incorrect; patient portals often contain sensitive health information, including treatment instructions and medical history.

D. Patient portals are the same as an electronic health record (EHR), and the patient can alter the course of their treatment plan if they choose. – This is incorrect; while portals provide access to EHR information, patients cannot typically alter their treatment plans directly through the portal.

Correct Answer is D

Explanation

A. Leilani should have opened her emails in a more private location only she can access. – This action may protect sensitive information from physical observation but does not prevent malware.

B. Leilani should have used a more complex login when accessing her emails. – A stronger password enhances security but does not address the risk of opening suspicious attachments.

C. Leilani should have changed her email password more frequently. – While regular password updates can help with unauthorized access, they do not protect against malware in suspicious attachments.

D. Leilani should run a virus check on the email with the file attachment from the unfamiliar source. – Running a virus scan on suspicious attachments is the best preventive action, helping to detect and mitigate threats before opening potentially harmful files.