Security news aggregator

Latest coverage for Healthcare

Stay updated with the latest healthcare cybersecurity trends, news, and tips to protect patient data and comply with medical industry security standards.

9 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Healthcare is the delivery of clinical care and related services through hospitals, clinics, laboratories, pharmacies, insurers, and connected medical devices. It depends on electronic health records (EHRs), patient identity systems, diagnostic and imaging platforms, medication and scheduling systems, and data exchanges between organizations. These environments hold sensitive health and payment information, while the availability and integrity of systems can affect treatment, diagnostics, and patient safety.

Security concerns include unauthorized access or disclosure of records, alteration of clinical data, and disruption of care through attacks on EHRs, connected devices, or third-party services. Defenses require risk-based access controls, strong authentication, network separation where appropriate, secure device and software maintenance, backups that support clinical continuity, and tested downtime and incident-response procedures. Vulnerability management must account for legacy systems and devices that cannot be patched quickly. Privacy and compliance obligations, such as HIPAA in the United States, shape how organizations collect, use, share, retain, and report health information.

Showing 9 most recent headlines Filtered view
Bank Info Security 2 years, 5 months ago

FDA Ramps Up Resources for Medical Device Cybersecurity

FDA's Dr. Suzanne Schwartz on How New 'Super Office' Boosts Agency's Cyber EffortsThe FDA's multifaceted approach to strengthening medical device security centers on several key areas, including enhanced regulatory oversight, industry collaboration and a recent organizational change that raises the profile of the agency's device work, said the FDA's Dr. Suzanne Schwartz.

Bank Info Security 2 years, 5 months ago

ISMG Editors: What Happened to the Cyberwar in Israel?

Also: Potential HIPAA Audit Revival; Security Risks of Sovereign AIIn the latest weekly update, four ISMG editors discussed the relatively low profile of cyberwarfare in recent international conflicts, the potential revival of a dormant HIPAA compliance audit program and the security implications of sovereign AI development.

Bank Info Security 2 years, 5 months ago

Breach Roundup: Zeus Banking Trojan Leader Pleads Guilty

Also: Polish Prime Minister Says Previous Administration Deployed Pegasus SpywareThis week, the Zeus leader pleaded guilty, Prudential detected hackers, U.S. telecoms have to report breaches, Microsoft patched zero-days, researchers said Chinese threat intel is faulty, ransomware hit Romanian healthcare entities, Juniper was breached and Poland allegedly previously used Pegasus.

Bank Info Security 2 years, 5 months ago

To Avoid Bankruptcy, EMR Firm Settles Lawsuit for $4M

Pediatric Tech Vendor Hit by 2022 Data Breach Affecting 3 Million - Mostly ChildrenAn electronic health record and practice management software firm says the only way to avoid bankruptcy from the consolidation of nine proposed class action lawsuits filed in the wake of a 2022 data breach is to settle the case for $4 million.

Bank Info Security 2 years, 5 months ago

Hackers Try to Extort $50 From Child, 2 Million More at Risk

Oklahoma Integris Health Facing Multiple Lawsuits in 2023 BreachAn Oklahoma-based healthcare system is notifying 2.4 million individuals that their sensitive information was potentially compromised in an exfiltration incident last year. Cybercriminals have been attempting to extort ransom payments directly from some of those affected patients - including kids.

Bank Info Security 2 years, 5 months ago

They're Back: HHS OCR Plans to Resurrect Random HIPAA Audits

Agency Is Surveying Previous Auditees to Reassess Dormant Audit ProgramAs U.S. federal regulators fine-tune a strategy to push the healthcare sector into a stronger cybersecurity posture, they are also dusting off a HIPAA compliance audit program that's been dormant for the last seven years. A new round of HIPAA audits for regulated entities is in the works.

Bank Info Security 2 years, 5 months ago

They're Back? HHS OCR Is Eyeing the Return of HIPAA Audits

The Agency Is Surveying Previous Auditees to Reassess the Dormant ProgramAs U.S. federal regulators fine-tune a strategy to push the healthcare sector into a stronger cybersecurity posture, they appear to be dusting off a HIPAA compliance audit program that's been dormant for the last seven years. Is a new round of HIPAA audits for regulated entities on the horizon?

Bank Info Security 2 years, 5 months ago

Bipartisan Senate Bill Requires HHS to Bolster Cyber Efforts

Legislation Aims to Evaluate and Improve Agency's Cybersecurity PostureA new bipartisan Senate bill would require the U.S. Department of Health and Human Services to biennially conduct cybersecurity reviews and tests on its IT systems and report to Congress on how it is updating its cybersecurity strategy to keep up with evolving cyberthreats.

Bank Info Security 2 years, 5 months ago

Ransomware Disrupts Hospital Services in Romania and France

Emergency Services Are Suspended as Digital Systems Are Pulled OfflineRansomware operators disrupted emergency healthcare services over the weekend, crippling operations in nearly two dozen hospitals in Romania and France. Ransomware attacks increase the in-hospital mortality rate for already-admitted patients, a recent study concluded.