Privacy & Security

Stack of $100 U.S. dollars on loose bills
CISA extends CVE program contract for 11 months
By Andrea Fox | 02:29 pm | April 16, 2025
The initial expiration of MITRE's contract for the Common Vulnerabilities and Exposures program was a shock to many cybersecurity experts. But the Cybersecurity and Infrastructure Security Agency quickly pledged that there would be no lapse in service.
Lee Kim, HIMSS_Las Vegas skyline Photo by halbergman/E+/Getty Images
Past year's data breaches often stemmed from remediable cybersecurity gaps
By HIMSS TV | 09:49 am | April 16, 2025
Healthcare security incidents in 2024 highlighted third-party vendor risk and the need to prepare business continuity plans and tabletop exercises in case of attack, says Lee Kim, senior principal of cybersecurity and privacy at HIMSS.
Doctor checking and tracking information on a computer
HHS updates regulatory guides for the safe use of EHRs
By Andrea Fox | 10:55 am | April 15, 2025
ASTP has released the 2025 SAFER Guides, which aim to improve health systems' adherence to electronic health record best practices. They were updated by clinicians with informatics training and informaticians with clinical experience.
Garrett Weber, Akamai Technologies_Data security illustration by KrulUA/iStock/Getty Images Plus
Tougher HIPAA compliance positions risk reductions
By HIMSS TV | 10:27 am | April 10, 2025
Garrett Weber, Akamai Technologies field CTO for enterprise security, explains how the new HIPAA security rule requires healthcare organizations to use specific technical controls, but it can also help to better position third-party risk management.
HHS building in Washington, DC
HHS employees fear IT staff reductions could destabilize agency
By Andrea Fox | 11:05 am | April 09, 2025
The mass layoffs have severely undercut essential IT, policy and contracting functions, and sources say they fear critical expertise has been lost. The government could hire contractors to fill the gaps, putting ousted employees in an ethical bind.
A nurse checking a patient's record on a digital tablet
Ex-NUH staff fined for unauthorised access of patient record
By Adam Ang | 10:26 pm | April 08, 2025
The former senior patient service associate pled guilty to the charge.
Worker using tablet
Close Your Hospital’s OT Network Cybersecurity Gap
By Close Your Hospital’s OT Network Cybersecurity Gap | 03:23 pm | April 08, 2025
Mitigating and responding to cyberattacks can cost hospitals and health systems millions of dollars per incident. To prevent these attacks, most healthcare organizations have taken steps to safeguard their information technology (IT) network containing patient data and financial records. However, many may not realize that their operational technology (OT) network comprising staff card access, HVAC and other systems may be vulnerable as well.
Ben Wolf, partner in Alston & Bird’s Health Care Group
Q&A: What FDA layoffs mean for medtech approvals
By Jessica Hagen | 01:53 pm | April 08, 2025
Ben Wolf, partner in Alston & Bird's Health Care Group, told MobiHealthNews how FDA staffing cuts could slow device approvals and what companies can do to stay ahead.
Tjasa Zajc, HIMSS_Las Vegas skyline Photo by halbergman/E+/Getty Images
Creating technology 'champions' with digital literacy education for staff
By HIMSS TV | 03:57 pm | April 07, 2025
A digital health literacy maturity model could aid in training and inspiring staff to adopt new tools and cybersecurity practices, says Tjasa Zajc, special advisor for HIMSS and moderator for the HIMSS25 Global Leaders Exchange panel.
A computer programmer focused on coding
Te Whatu Ora reveals IT breach in Central region
By Adam Ang | 08:32 pm | April 06, 2025
A hacker accessed some sensitive data of regional staff in October.