Privacy & Security

After a federal court ruled that healthcare organizations sharing individual IP addresses with third parties did not constitute a HIPAA breach, legal ambiguity remains, says one privacy expert. 

David Lang will focus on the Department of Health and Aged Care's ongoing cybersecurity upgrade.

Government and industry cyber pros aren't always confident in their organizations' abilities to recover from cyberattacks, two recent surveys suggest. They say underfunded security budgets are causing vulnerabilities in the face of pervasive threats.

With large ransomware breaches up more than 260% since 2018, "the health care sector needs to get serious about cybersecurity and complying with HIPAA," says the director of the HHS Office for Civil Rights.

Best practices for protecting connections and securing transactions across the enterprise.

While there's been progress across government and industry, the agency said the new technology strategy emphasizes health equity, public health, AI and cybersecurity to better connect the health system with health data "for all health IT users."

It's already happening: CFOs are getting Teams calls from their "CEO" asking for reports on financial transactions, says ChristianaCare CISO Anahi Santiago ahead of her appearance at the 2024 HIMSS Healthcare Cybersecurity Forum.

An investigation into the incident, now being handled by the Department of Justice, is reportedly trying to determine whether Gov. Tim Walz or Sen. J.D. Vance’s health records were shared as a result of the insider breaches.

It wants the information released so patients, health systems, interoperability advocates and others "can evaluate the facts for themselves."

To prevent healthcare cyberattacks and their damage to the American public, lawmakers propose mandatory cybersecurity requirements and penalties, which include jail time for executives who lie about cyber hygiene.