MGMA, WEDI urge CISA to align its reporting timelines and requirements with other federal partners, including the HHS Office for Civil Rights, to decrease the administrative burden. Stakeholders in healthcare are proposing changes to the Cybersecurity and Infrastructure Security Agency’s proposed rule on cyber incident reporting requirements under the Cyber Incident Reporting for Critical InfrastructureContinue reading “Stakeholders Suggest Changes to CISA’s Cybersecurity Reporting Rule.”
Category Archives: Security
How MFA Is Falling Short.
In baseball, it’s tempting to think that once you’re on a base, the hard part is over. But then, just when you think you’re safe (you are literally “safe”) the baseman hits you with the hidden ball trick. Your opponent appears to throw the ball away, but merely hides it and tags you in the moment you’re mostContinue reading “How MFA Is Falling Short.”
Ransomware is ravaging healthcare orgs—and making it harder for them to get insurance.
Cyber insurance rates plateaued in 2023, but remain unaffordable for many hospitals and are likely to rise again soon. The disastrous ransomware attacks on Change Healthcare and Ascension this year ran up staggering costs and put a spotlight on the healthcare sector’s vulnerability. But healthcare orgs are hardly new to eye-popping bills after a major hack. Analyzing attacks onContinue reading “Ransomware is ravaging healthcare orgs—and making it harder for them to get insurance.”
Survey: Healthcare IT Trends to Watch in 2024.
Software development firm Auvik surveyed over 2000 IT professionals to report on current trends in healthcare IT. Auvik concluded that automation is the theme for this year’s trends report. On Monday, June 24, Canadian cloud-based IT management platform Auvik released its nine healthcare IT trends to watch this year. For its report, Auvik surveyed over 2000 IT professionals, including CEOs,Continue reading “Survey: Healthcare IT Trends to Watch in 2024.”
Attackers increasingly target cybersecurity vendors with backdoor hacks, expert says.
“Customers need to hold their cybersecurity vendors to a pretty high level of assurance in terms of their own internal security practices,” expert says. Threat actors could be coming for your organization via third party vendors—a danger in a cybersecurity landscape where IT teams and budgets are often stretched, necessitating outside help. RSA Security CEOContinue reading “Attackers increasingly target cybersecurity vendors with backdoor hacks, expert says.”
UnitedHealth CEO Testifies on Cyberattack Before Senate.
Stolen credentials used to remotely access a UnitedHealth’s portal that didn’t have multi-factor protection, CEO testifies. UnitedHealth Group’s CEO, Andrew Witty, testified on Wednesday, May 1, before the House Energy and Commerce Committee on the Change Healthcare cyberattack. In his opening statement, Witty told the committee that criminals used compromised credentials to remotely access a Change Healthcare Citrix portal, whichContinue reading “UnitedHealth CEO Testifies on Cyberattack Before Senate.”
Venture funding for cybersecurity firms remains weak after 2022 collapse.
Venture funding for cybersecurity vendors stood at $2.3 billion in Q1, a shadow of 2021–2022 boom times. Venture funding of cybersecurity vendors has dried up, although there are some signs the drought might break soon, according to research by executive recruitment firm Pinpoint Search Group. Pinpoint’s data pegged the total amount of dough venture capitalists threw atContinue reading “Venture funding for cybersecurity firms remains weak after 2022 collapse.”
NSA rolls out security guidance for companies using AI systems.
Companies should make sure they’re implementing “robust governance, a well-designed architecture, and secure configurations,” according to the NSA. The NSA has rolled out a Cybersecurity Information Sheet (CSI), advising organizations on the best ways to deploy “secure and resilient AI systems.” Companies should ensure they’re implementing “sound security principles” in an organization’s IT environment and its AIContinue reading “NSA rolls out security guidance for companies using AI systems.”
Microsoft needs to win back trust.
Years of security issues and mounting criticism have left Microsoft needing to overhaul its cybersecurity. The world’s largest tech company has a security problem. A series of high-profile security incidents have rocked Microsoft over the past few years, and a scathing report from the Cyber Safety Review Board recently concluded that “Microsoft’s security culture wasContinue reading “Microsoft needs to win back trust.”
UnitedHealth paid ransom to bad actors, says patient data was compromised in Change Healthcare cyberattack.
UnitedHealth Group on Monday said it paid ransom to cyberthreat actors to try and protect patient data, following the February cyberattack on its subsidiary Change Healthcare. The company also confirmed that files containing personal information were compromised in the breach. “This attack was conducted by malicious threat actors, and we continue to work with the law enforcement and multipleContinue reading “UnitedHealth paid ransom to bad actors, says patient data was compromised in Change Healthcare cyberattack.”
You must be logged in to post a comment.