By Zac Amos – Cyberattacks on medical devices pose uniquely dangerous threats, facilitating data loss, enabling malfunction and risking lives. However, a software bill of materials is an important requirement that reduces these issues.
Read More
By Lance Reid – Cybersecurity in healthcare isn’t just about compliance anymore, it’s about resilience. As threats become more sophisticated and regulators tighten expectations, healthcare organizations are facing growing urgency to find weaknesses before someone else does.
By Erik Eisen – Why Healthcare Practices Can’t Afford to Treat Cybersecurity Like a To-Do List. I’ve heard the fear and anxiety in the wake of a cybersecurity incident, “I wasn’t scared when it happened. I was scared when I realized how long we’d ignored it.” That’s the problem. “Cybersecurity” has become white noise.
By Matt Fisher – The drumbeat of settlement agreements for alleged HIPAA violations by the Office for Civil Rights is continuing along with the consistent finding that the required risk analysis did not occur. The consistent announcement of settlements offers regular reminders to the healthcare industry that OCR is watching and expecting compliance to improve.
By Ellie Gabel – Health care data centers are central to holding key information that supports clinical care and patient monitoring systems. However, a single natural occurrence or a structural failure can damage entire hospital networks and put patient safety at risk.
By Matt Fisher – Imagine this scenario: an individual is suffering from substance use disorder and decides to seek help. A big reason for not getting treatment is reportedly not knowing how or where to get treatment, not being able to afford the treatment, and/or not finding a program or clinician where they wanted to be able to go.
By Zac Amos – Healthcare IT leaders already understand that attackers have them in their sights, but the gulf between knowing and acting remains wide. Penetration testing — or pen testing — closes that gap by providing proof of how systems can be breached and data exfiltrated.
By Matt Fisher – The risk to privacy and security of healthcare information, despite all of the headlines, does not only come from outside attackers. Inside threats are real and can go undetected for potentially longer periods of time.
By Timothy Casey – Healthcare leaders, here’s the hard truth: Cyberattacks are no longer a “what if”—they’re a when. In 2024 alone, more than 500 major breaches compromised millions of patient records. And while most organizations think they’re covered, the reality is far more dangerous: