In the wake of Change Healthcare’s February 2024 ransomware attack, which affected the protected health information (PHI) of at least 100 million individuals — the largest breach of PHI in history — ...

The Department of Health and Human Services has filed proposed modifications to the Health Insurance Portability and Accountability Act of 1996 security rule to strengthen the cybersecurity of ...

Health care cybersecurity policy rests on a fundamental misunderstanding of what cybercriminals actually want. For years, regulators and providers have assumed that medical records — diagnoses, lab ...

Among myriad acronyms in the healthcare industry, HIPAA is one of the most referenced. At the end of last year, the Department of Health and Human Services proposed major updates to this law — named ...

The proposed HIPAA Security Rule introduces mandatory measures to prevent malicious cyberattacks in health care. The U.S. Department of Health and Human Services issued a proposed rule on Jan. 6 to ...

In response to several high-profile cybersecurity incidents affecting hospitals and other health care providers, including the Change Healthcare breach, new federal legislation was recently introduced ...

The HHS wants to update the HIPAA security rule for the first time in more than a decade to bolster healthcare cybersecurity, regulators said late last month. The Office for Civil Rights, which ...