New & Notable
Check Point warns of zero-day flaw targeted by ransomware affiliate
A vulnerability in the company’s VPN deployments has faced exploitation since early May.
— Cybersecurity Dive
Organizations struggle with third-party risk management after vendor approval
Healthcare organizations are diligent about third-party risk management during vendor assessment and procurement, but falter in ongoing lifecycle oversight, new research reveals.
New HSCC guidance confronts AI cyber risk, champions governance
HSCC released its latest installment in a series of AI-specific publications aimed at helping healthcare organizations securely adopt AI.
AHA urges court to dismiss tracking tech lawsuit against Endeavor Health
The AHA argued that hospitals' use of common online analytics tools serves a legitimate purpose rather than a criminal one, making the complaint against Endeavor Health invalid.
California AG sues over 23andMe data breach
— MedTech DiveHealthcare Strategies: A Podcast
-
A podcast for healthcare professionals seeking solutions to today's and tomorrow's top challenges. Hosted by the editors of Xtelligent Healthcare Media, this podcast series focuses on real-world use cases that are leading to tangible improvements in care quality, outcomes, and cost.
Guests from leading provider, payer, government, and other organizations share their approaches to transforming healthcare in a meaningful and lasting way.
View All Episodes
Latest News
-
Missouri regulators say Conduent is not cooperating in breach investigation
Missouri regulators investigating the Conduent breach allege that the company has been unwilling to provide the information needed to assess the breach's impact.
-
CISA launches critical infrastructure cyber resilience initiative
CISA's new CI Fortify initiative emphasizes the importance of isolation and recovery to ensure critical infrastructure entities can continue key operations during a cyberattack.
-
AHA, Joint Commission launch cyber resilience program
The Cyber Resilience Readiness program aims to help health systems sustain clinical operations during cyberattacks.
-
Medical device security improves, but cyberattacks remain pervasive
Healthcare organizations are increasingly integrating cybersecurity into medical device procurement and investment decisions, but risk exposure remains high, new research shows.
-
Legacy architecture, awareness gaps stifle microsegmentation adoption in healthcare
System complexity, legacy architecture and awareness gaps hinder healthcare's adoption of modern microsegmentation, new research shows.
-
OCR settles four HIPAA investigations, prioritizes risk analysis
OCR settled four investigations into healthcare ransomware attacks, collecting a total of $1.17 million from affected entities and securing commitments to corrective action plans.
Features
-
Pennsylvania vs. Character.AI: What the lawsuit signals for the AI legal landscape
The state of Pennsylvania sued Character.AI, alleging that its chatbot violated the Medical Practice Act by posing as a licensed psychiatrist.
-
Georgia Tech builds network sandbox to test hospital cyber defenses
With ARPA-H funding, Georgia Tech researchers are building a platform that emulates a hospital's network, enabling them to identify and fix vulnerabilities without risking patient care.
-
OCR director defends HIPAA updates: "The cost of doing nothing is very high"
OCR Director Paula M. Stannard addressed concerns about proposed HIPAA Security Rule updates, but said OCR has yet to decide which, if any, of the proposals will ultimately be finalized.
-
Managing shadow AI risks as healthcare embraces innovation
At HIMSS, experts spoke about managing shadow AI risk with governance, education and technical safeguards.
