Privacy & Security

A new report shows 84 percent of U.S. FDA-approved health apps tested by IT security vendor Arxan Technologies did not adequately address at least two of the Open Web Application Security Project top 10 risks. 

To make it easier for people to gain access to their personal health information, the U.

After spending the past year reporting on loopholes and lax enforcement of the federal patient-privacy law known as HIPAA, ProPublica reporter Charles Ornstein has come to realize that it's not just celebrity patients who are at risk. We all are.

Regulators have logged dozens, even hundreds, of complaints against some health providers for violating federal patient privacy law. Warnings are doled out privately, but sanctions are imposed only rarely. Companies say they take privacy seriously.

The law lays out a plan for instituting better security in healthcare but it will require a lot of work to get there.

As the year 2015 draws to a close with a warning that healthcare -- more than ever before -- has become a target for cyber security attacks, we list the most recent data breaches reported to the HHS Office for Civil Rights.

The National Science Foundation will provide a $10 million grant to researchers at several top universities to support their work on cloud and mobile network security in healthcare.

Data security firm Digital Guardian has acquired $66 million in new capital it will use to bolster its roster of products for data protection, advanced threat protection and endpoint detection and response.

Healthcare organizations are bulking up their privacy protections with firewalls, encryption, data loss prevention software and more, but the much lower-tech visual hacking threat is still a concern, according to a new 3M educational campaign.

The National Institute of Standards and Technology plans to ratchet up its two-year-old security offering, dubbed the Framework for Improving Critical Infrastructure Cybersecurity, and has put out a public call for user feedback.