Healthcare, HIPAA/HITECH, Industry Specific HIPAA Compliance Audits Target Security Rule Provisions Amid Rising Cyber Threats Marianne Kolbasuk McGee (HealthInfoSec) • March 25, 2025 Image: Getty Images The U.S. Department of Health and Human Services (HHS) has initiated HIPAA compliance audits of covered entities and business associates, marking the first round…
Attack Surface Management, Healthcare, Industry Specific Health-ISAC and AHA Call for Enhanced Security Amid Terror Threats Marianne Kolbasuk McGee ( HealthInfoSec) • March 20, 2025 The Health ISAC and American Hospital Association have issued a warning for hospitals to improve their physical and cybersecurity measures in response to emerging terrorist…
Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development Research Uncovers the Challenge of AI-generated Misinformation in Healthcare and Proposed Solutions Rashmi Ramesh (@rashmiramesh_) • March 18, 2025 Image: Shutterstock Artificial intelligence fundamentals are prompting a significant reevaluation among healthcare professionals and technologists regarding the safe utilization of AI…
Healthcare, HIPAA/HITECH, Industry Specific Health Industry Associations Express Concern Over Proposed Cybersecurity Regulations Marianne Kolbasuk McGee (HealthInfoSec) • February 27, 2025 A coalition of healthcare organizations urged the administration to withdraw the proposed HIPAA security rule update in a letter dated February 17 (Image: White House, CHIME, MGMA) A coalition…
Recent cyber activities linked to North Korean threat actors, particularly the Kimsuky group, demonstrate a notable evolution in their techniques. They are increasingly leveraging living-off-the-land (LotL) strategies, relying on common services to remain undetected. A recent operation, identified as “DEEP#DRIVE” by Securonix, exemplifies this trend, utilizing PowerShell scripts and Dropbox…
Artificial Intelligence & Machine Learning, Healthcare, Industry Specific Lawsuit Claims Insurer Misused AI in Denying Necessary Medical Care Marianne Kolbasuk McGee (HealthInfoSec) •February 14, 2025 Image: UnitedHealthCare A proposed class action lawsuit against UnitedHealth Group has gained judicial approval to progress. The case contends that UnitedHealthCare, the company’s insurance division,…
Black Kite, a leader in third-party cyber risk intelligence, has released its sixth annual Third Party Breach Report, offering an in-depth analysis of public data breaches and regulatory findings from the previous year. The report highlights a troubling trend in 2024: a proliferation of “silent breaches” within extensive supply chains.…
Black Kite’s Third Party Breach Report Highlights Evolving Cyber Risks in 2024 In a recent release from Black Kite, a prominent player in third-party cyber risk intelligence, the findings of their sixth annual Third Party Breach Report reveal alarming trends regarding cybersecurity breaches over the past year. The report, which…
In a significant data breach, sensitive information belonging to over one million Americans has been compromised, raising alarms in the cybersecurity community. This incident marks one of the largest healthcare data breaches to date, prompting heightened scrutiny from government officials and industry leaders alike. The breach, which reportedly occurred recently,…
