Privacy & Security

Breached network management software vendor SolarWinds has also listed the U.S. Centers for Disease Control and Prevention and Blue Cross Blue Shield as customers.

IoT cybersecurity firm Sternum CEO Natali Tshuva discusses the dangers of unsecured medical devices – and how patient trust can be restored with manufacturer transparency.

This week's top stories include the vaccine distribution pipeline facing serious cybersecurity risks as the rollout begins in the UK, and Google unveiling a new research app that shows participants how their data is driving health insights.

The U.S. Centers for Disease Control and Prevention requested that states share information about individuals who receive the COVID-19 vaccine.

The new proposed rule would "break down barriers that have stood in the way of commonsense care coordination and value-based arrangements for far too long," says HHS Secretary Alex Azar.

Discovered by CyberMDX, the flaw, MDhex-Ray, could allow remote exploits that would compromise connected radiology devices – enabling access to and potential manipulation of protected health data.

From the "cold chain" to clinicians' devices at the point of care, the roll-out of a COVID-19 vaccine presents bad actors with a wide array of vulnerable targets.

The senator touts "judicious use of the cloud," wider information sharing and "good ol' cyber hygiene" as private-sector best practices – but also says lack of a real deterrent for nation state bad actors has been a federal policy failure.

The COVID-19 telehealth boom has expanded health systems' perimeters – inside and outside the network – and in the process it's made them more vulnerable to breaches.

Security can't be just an afterthought when building healthcare products; it has to be a foundation for the way they are built, says Lawrence Huang, VP of product management at Cisco Meraki.