Healthcare , Industry Specific , Legislation & Litigation Orrick Herrington Cyberattack Compromised Clients’ Data, Affected Nearly 638,000 Marianne Kolbasuk McGee (HealthInfoSec) • April 15, 2024 Image: Orrick A global law firm that provides data breach legal services has agreed to an $8 million settlement to resolve a proposed class action lawsuit filed against […]
Organizations need to gradually advance through specific maturity levels in various components of the zero-trust architecture to effectively build a resilient security environment.
Healthcare , Industry Specific , Standards, Regulations & Compliance 5-Year Plan Details How to Raise the Bar on Health Ecosystem’s Approach to Cyber Marianne Kolbasuk McGee (HealthInfoSec) • February 27, 2024 Healthcare entities are facing a rising tide of cyberthreats. A new five-year plan from the Health Sector Coordinating Council aims to help […]
The vulnerability affects various versions of FortiOS, and the recommended solution includes upgrading to specific versions or migrating to a fixed release to address the flaw.
Healthcare , Incident & Breach Response , Industry Specific California Firm Said August Attack Affected Clients’ Data Marianne Kolbasuk McGee (HealthInfoSec) • January 29, 2024 Insurance broker Keenan & Associates is notifying more than 1.5 million individuals about an August 2023 hacking incident that compromised personal and health information. (Image: Keenan & Associates) […]
Healthcare , HIPAA/HITECH , Industry Specific ‘Essential’ and ‘Enhanced’ Best Practices Will Influence Upcoming Rule-Making Marianne Kolbasuk McGee (HealthInfoSec) • January 24, 2024 HHS’ cybersecurity performance goals guidance details “essential” and “enhanced” best practices and controls for strengthening healthcare sector security. (Image: HHS) The Department of Health and Human Services has released guidance […]
Healthcare , Incident & Breach Response , Industry Specific Researcher Reported Configuration Issue to Cloud Vendor After Lab Failed to Respond Marianne Kolbasuk McGee (HealthInfoSec) • January 23, 2024 Image: Getty An unsecured database appearing to belong to a Netherlands-based medical laboratory exposed 1.3 million records on the internet, including COVID test results […]
Governance & Risk Management , Healthcare , Industry Specific Complaint Alleges Tech Giant Is Breaking Privacy Promises, Putting Patients at Risk Marianne Kolbasuk McGee (HealthInfoSec) • January 19, 2024 Image: Google Two tech advocacy groups are pushing the Federal Trade Commission to investigate Google, alleging the company has reneged on a promise it […]
Fraud Management & Cybercrime , Healthcare , Industry Specific American Hospital Association Warns of Social Engineering Schemes Marianne Kolbasuk McGee (HealthInfoSec) • January 18, 2024 Image: Getty Threat actors are targeting hospital IT help desks with elaborate social engineering scams to commit payment fraud by using stolen credentials from billing and payments employees, […]