Privacy & Security

Black and white image of two individuals fencing. One is jumping but the opponent finds the weak spot.
Warning: Cybercriminals have more weapons with AI
By Andrea Fox | 11:38 am | July 18, 2023
Artificial intelligence has changed the threat landscape, enabling new cybersecurity risks for health systems: more sophisticated social engineering, automated vulnerability intelligence gathering, endpoint detection evasion and more.
Image of network showing multiple medical devices or IoT inputs
Healthcare's edge computing priorities have changed
By Andrea Fox | 10:15 am | July 12, 2023
AT&T's annual industry insights report revealed a shift in focus from consumer virtual care in 2022 to richer budgeting for tele-emergency medical services. 
Abstract of a padlock
HCA Healthcare says data breach 'appears to be a theft'
By Mike Miliard | 11:21 am | July 11, 2023
The health system says the patient data, which was posted online, includes names, phone numbers and appointment information, but not clinical or payment info.
Cardiac patient talking to cardiologist on a telehealth call with monitor, medication and a sandwich on the table
CISA warns of Medtronic cardiac device security vulnerability
By Andrea Fox | 10:23 am | July 05, 2023
Medtronic has released an update for a cybersecurity vulnerability that an unauthorized user could exploit to steal, delete or modify cardiac device data or to gain network access.
NetSPI Chad Peterson interview_Wireframe tunnel photo DKosig/Getty Images
Pentesting as a key component for HIPAA compliance
By HIMSS TV | 07:00 am | July 03, 2023
An "unwritten requirement" can help healthcare organizations understand their environments and examine vulnerabilities to protect ePHI, says Chad Peterson, managing director at NetSPI.
Hands on a laptop, and the screen shows code
HC3 warns HCOs to fortify against cybercriminals FIN11 now
By Andrea Fox | 12:12 pm | June 19, 2023
The agency says that FIN11 uses a variety of TTPs and has gained access to more organizations than it is able to monetize, choosing to initiate zero-day exploits based on an organization's location and security posture.
HHS Office for Civil Rights Director Melanie Rainer
OCR a helping hand as health systems grapple with cybersecurity
By HIMSS TV | 07:00 am | June 16, 2023
HHS Office for Civil Rights Director Melanie Rainer describes how her office is helping providers understand and meet their security and compliance requirements.
Black and gold gavel on a black table.
Harvard Pilgrim Healthcare sued for data breach
By Andrea Fox | 12:29 pm | June 14, 2023
An April ransomware attack that compromised the PPI and PHI of some 2.5 million members has led to multiple class action lawsuits against the Massachusetts-based health plan and its parent company.
Hospital campus at night
A cyberattack is partly to blame for St. Margaret's Health closing all operations
By Susan Morse | 02:54 pm | June 13, 2023
Young woman wearing a sweatshirt is sitting on her bed and checking a mobile application for information.
CISA, FBI warn health systems and others of Clop MFT ransomware tactics
By Andrea Fox | 11:07 am | June 13, 2023
They say a vulnerability in MOVEit, a managed file transfer product from Progress Software that provides automated high-volume, HIPAA- and GDPR-compliant transfers, could leave hospitals or healthcare organizations at risk.