By Jake Bice – In early 2025, Frederick Health experienced a ransomware attack that affected more than 900,000 patient records and slowed operations for weeks. Frederick Health has permitted us to share this account of what actually occurred during the attack so that other healthcare organizations can learn valuable lessons.
Read More
By Russell Teague – Why Stronger Mandates Are Necessary and Why Action Cannot Wait – Healthcare organizations are being urged to prepare for an update to the HIPAA Security Rule expected in the early part of this year. The proposed changes would require mandatory twice-annual vulnerability scanning, annual penetration testing, and…
By Dirk Schrader – Healthcare has always been a mission-driven industry, but it also sits at the intersection of some of the most aggressive cyber threats. Patient records are among the most valuable assets on the black market, and clinical operations are among the least tolerant of downtime.
5 Ways to Keep Your Personal Data Safe – Do you use a fitness tracker, a meditation app, a glucose monitor, or anything that logs your steps or sleep? While these tools can make life easier, they also collect a lot of personal information. Here’s the thing. Not all apps and wearables follow the same rules.
January 20th, 2026 1pm – 5pm ET – This fourth annual half-day virtual summit sets the tone for the year ahead, offering a strategic look at how health systems can strengthen digital trust, integrate AI securely, and build enterprise-wide resilience.
More than 100 hospital systems, healthcare provider organizations, and provider associations have signed a joint stakeholder letter led by CHIME calling on the HHS to withdraw its proposed update to the HIPAA Security Rule and instead engage with healthcare providers to develop a more practical, risk-based cybersecurity framework.
By Scott Anderson – Many behavioral health agencies lack adequate controls to address and recover from a cybersecurity incident. What these agencies need are capabilities such as adequate backup and recovery, managed detection and response, security information and event management, data loss prevention and other key security elements.
By Piotr Kupisiewicz – How Modern Zero Trust Finally Delivers on Its Promise – Healthcare organizations find themselves in an impossible position. With ransomware attacks occurring at hospitals with alarming regularity, Chief Information Security Officers face relentless pressure to implement comprehensive cybersecurity measures.
Securing Medical Devices and IoT: Safeguarding the Digital Edge, a session at this year’s CHIME Fall Forum with Ismelda Garza, CIO, Cuero Regional Health Care and Ravi Monga, Healthcare CISO, Zscaler; former CISO at St. Luke’s and Children’s Mercy.