Healthcare Sector Faces a Surge in Ransomware Attacks: 49% Increase Year-Over-Year Recent data reveals a troubling trend in cybersecurity as the healthcare sector continues to be the most targeted industry for ransomware attacks, with incidents surging by 49% over the past year. This alarming increase underscores the evolving threat landscape,…
Legal expert David Holtzman, founder of HITprivacy LLC, highlighted the complexities surrounding the impending realignment of federal regulations that govern the confidentiality of substance use disorder patient records under 42 CFR Part 2, particularly in relation to HIPAA’s privacy requirements. As the updates unfold, Holtzman emphasizes that the changes are…
As the mid-February compliance deadline looms for new regulations aimed at aligning federal laws governing the confidentiality of substance use disorder records with HIPAA, treatment facilities supported by federal funding are facing crucial uncertainties. Legal expert Aleksandra Vold, a partner at the law firm BakerHostetler, emphasized that several significant questions…
Despite ongoing regulatory pressures and an escalating landscape of cybersecurity threats, a significant vulnerability persists within the healthcare sector: many healthcare organizations continue to store patient data in unencrypted formats, exposing millions of Americans to potential data breaches that could compromise their most sensitive health information. This widespread issue reflects…
HIPAA/HITECH, Litigation, Standards, Regulations & Compliance Comstar Settles HIPAA Allegations with $75K Payment Related to 2022 Breach Marianne Kolbasuk McGee (HealthInfoSec) • January 29, 2026 Ambulance billing firm Comstar will pay a total of $515,000 to Massachusetts and Connecticut to settle allegations of HIPAA and state data privacy infringements stemming…
Data Loss Prevention (DLP), Data Security Survey Reveals Nearly 60% of Tech Students Would Breach HIPAA for Monetary Gain Marianne Kolbasuk McGee • January 26, 2026 A University of Buffalo study indicates that a troubling number of future IT professionals would compromise patient records for a significant financial incentive. (Image:…
Governance & Risk Management OIG: Inadequate Standards and Third-Party Oversight May Endanger Health Sector Agencies Marianne Kolbasuk McGee (HealthInfoSec) • January 22, 2026 The U.S. Department of Health and Human Services Office of Inspector General emphasizes a need for unified cyber governance standards. (Image: HHS) In a recent…
A recent report highlights significant concerns over an emerging health privacy crisis in the United States, driven by invasive surveillance practices and inadequate legal protections. Patients are reportedly refraining from seeking necessary medical care due to fears that immigration agents could target them within healthcare settings, exacerbating treatment delays and…
Healthcare, HIPAA/HITECH, Industry Specific Federal Agencies Urge HIPAA Entities to Strengthen Security Risk Management Marianne Kolbasuk McGee (HealthInfoSec) • January 19, 2026 HHS is calling on HIPAA-regulated entities, such as hospitals and their third-party associates, to enhance the security of their IT systems, software, and medical devices. (Image: Getty Images)…
