Erin McCann

Plaintiffs who slapped Sony Pictures with a class action lawsuit after their detailed medical records were swiped in a cyberattack have finally reached an agreement on a proposed settlement.

Healthcare security folks, listen up: Failing to encrypt portable devices and laptops containing patient data could result in a serious HIPAA fine, as one Indiana-based health group can now attest.

Data security isn't what it used to be. With today's threat landscape, the stereotypically introverted, more-into-computers-than-people techie isn't going to cut it as CISO. And there are plenty of people who will tell you why.

Here's a tall task: overseeing identity access management for a 163-hospital health system that spans 20 states and the U.K. But despite the myriad challenges, HCA's Bobby Stokes is ahead of the game. He has a few tips.

A 12-hospital health system is notifying hundreds of its current and former patients that their protected health information has been compromised after discovering an employee was involved in identity theft.

Turns out the Department of Veterans Affairs uses a Web-based communication platform that isn't exactly secure. In fact, a new report suggests VA practices in this case might have put protected health information at serious risk.

One cloud-based EHR company has just inked its 600th partnership deal, one of the newest being with big-name clinical lab startup Theranos.

Five more Cerner clients have agreed to tap CommonWell Health Alliance's interoperability services, the trade association announced Monday.

What happens when a healthcare organization's employees are found to have been inappropriately accessing patient medical records? The actions of one health system might serve as an example.

Despite digital health's record breaking VC growth last year -- and more recent reports showing it hasn't slowed down in 2015 either -- the percentage of these startups that actually make it might surprise you.