A Lurking Threat: Counselor Practices to Guard Against Cyber Threats

As a result of shifts in global power, the growth of cyber capabilities worldwide, and the impact of COVID-19 on the increasing use of technology in varied workplaces, the potential for threat and disruption to mental health facilities is expected to increase. Counselors and their clients are vulnerable to these threats any time they share data online with each other, with third-party payers, and with allied health professionals. In fact, any private information stored digitally is potentially at risk for exploitation or theft. This current environment highlights the need for an intentional process and approach that can help mental health counselors understand their digital assets and vulnerabilities in order to anticipate and protect against potential cyber threats. This type of process can be facilitated through the application of cyber intelligence and cybersecurity principles to online counseling services in order to address ethical and legal obligations of counselors and to assuage client fears about potential privacy breaches. When counselors keep client data safe, Health Information Portability and Accountability Act and Family Educational Rights and Privacy Act violations are less likely to occur in a variety of settings where clients may be seen. An overview of the need for cybersecurity, a framework for bolstering cybersecurity, and specific guidelines for counselors are provided.