Healthcare cybersecurity is gaining increased attention from the industry and the federal government. The focus is on mandatory cybersecurity performance goals and enhancing the protection of small, underserved healthcare providers, said Greg Garcia, executive director, HSCC.
Most hospitals prioritize cybersecurity but often lack the necessary resources to comply with these goals. The question becomes not about the practices, but the potential barriers to implementation, according to John Riggi at the American Hospital Association.
An Arkansas-based mental and behavioral health services provider is notifying more than 375,000 individuals of a data theft potentially compromising their sensitive personal and medical information. The organization already faces at least one proposed class action lawsuit in the wake of the breach.
Third-party risk management (TPRM) professionals evaluate service providers from a range of industries and geographies, meaning many of the third parties they work with operate based on different regulatory standards, often with hugely varied access permissions, responsibilities and internal cybersecurity policies....
The American Hospital Association and Health Information Sharing and Analysis Center are urging the healthcare sector to step up its supply chain security and resilience as disruptive cyberattacks target critical suppliers, including last week's attack on a Florida-based blood donation center.
CrowdStrike has dismissed claims of negligence leveled at it by Delta Air Lines, which is threatening to sue after a faulty security software update led to days of IT disruption. In response, the cybersecurity vendor is asking why Delta's competitors recovered so much more quickly.
CrowdStrike faces a putative class action lawsuit over the widespread global IT outage in late July that caused major disruptions at airports and hospitals after the company pushed through a faulty update to its Falcon platform, causing its stock prices to plummet.
Despite making some progress in tackling APP scams, smaller payment firms still struggle with high fraud rates compared to large banks, as highlighted in a report by the U.K.’s Payment Systems Regulator. Customer reimbursement guidelines have prompted banks to scrutinize suspicious payments.
Federal regulators smacked an ambulance firm with a $115,200 civil monetary penalty for failing to provide a patient with her requested health records for more than a year. The penalty is the U.S. Department of Health and Human Services' 49th HIPAA "right of access" enforcement action.
ISMG's Healthcare Cybersecurity Summit explored emerging trends and best practices in healthcare cybersecurity, driving conversations around securing patient data and ensuring seamless healthcare system operations amid escalating cyber incidents and technological dependencies.
Semiconductor designer Nvidia is reportedly the subject of two separate U.S. Department of Justice antitrust probes, focused on its acquisition of an Israeli artificial intelligence company and the chip giant's alleged anti-competition business practices.
Pharmaceutical maker Cencora - formerly AmerisourceBergen - in an updated filing this week told the U.S. Securities and Exchange Commission that a Feb. 21 cyberattack resulted in the theft of more data than previously reported - including personal and health information.
The world's first-ever binding regulation on artificial intelligence came into force on Thursday. The law's requirements are set to be enforced in a phased manner. The ban on high-risk AI systems is set to be actionable first, six months after the enforcement date.
Change Healthcare officials projected that the company's massive February cyberattack affected one-third of the American population. So why did the IT services provider's HIPAA breach report to federal regulators lowball the initial estimate, saying the cyberattack only affected 500 people?
The United States government gave a cautious blessing for unrestricted access to open artificial intelligence foundation models, warning that users should be prepared to actively monitor risks. Open-weight AI models are essentially ready-to-use molds for developers to build applications on.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.co.uk, you agree to our use of cookies.