Privacy & Security
NIH received backlash after the director announced last week that it would amass private medical records to give to HHS Secretary RFK Jr.
It is launching a new software that simplifies the verification of CGHS beneficiary IDs.
An unauthorized third party gained access to the system's network and obtained copies of certain data.
IT teams need strong visibility into their networks – and the ability to respond fast to neutralize polymorphic threats that aim to steal credentials, intercept MFA authentication codes or deceive users into downloading malicious software.
The health insurer unintentionally exposed the personal data of 4.7 million people to Google through a misconfigured analytics tool used between 2021 and 2024.
Cybersecurity In Focus
Securing a patchwork of IT systems can be a tall order for small facilities, but collaboration and info sharing is helpful, says one chief security officer.
After the Change Healthcare breach, healthcare organizations are diversifying their buying strategies and asking about vendors' cybersecurity policies, says Karly Rowe, interim president of Inovalon's provider business unit.
"While the scope and impact remains unconfirmed, the nature of the reported activity presents potential risk to organizations and individuals," according to the cybersecurity agency.
The initial expiration of MITRE's contract for the Common Vulnerabilities and Exposures program was a shock to many cybersecurity experts. But the Cybersecurity and Infrastructure Security Agency quickly pledged that there would be no lapse in service.
Healthcare security incidents in 2024 highlighted third-party vendor risk and the need to prepare business continuity plans and tabletop exercises in case of attack, says Lee Kim, senior principal of cybersecurity and privacy at HIMSS.