New & Notable
CISA alerts healthcare sector to hospital management system vulnerabilities
Successful exploitation of two low-complexity vulnerabilities found in a Vertikal Systems hospital management information system could potentially expose sensitive data.
Conduent data breach impacts millions
A business associate data breach has affected millions of individuals across several states, impacting beneficiaries of Blue Cross Blue Shield of Montana, Premera Blue Cross and more.
OIG reveals Medicaid management, enrollment system security gaps
OIG conducted penetration tests on 10 state Medicaid management information and eligibility and enrollment systems, revealing security gaps.
Integris Health reaches $30M class action data breach settlement
Nearly 2.4 million individuals were impacted by a 2023 data breach at Integris Health, resulting in a $30 million settlement.
Healthcare Strategies: A Podcast
-
A podcast for healthcare professionals seeking solutions to today's and tomorrow's top challenges. Hosted by the editors of Xtelligent Healthcare Media, this podcast series focuses on real-world use cases that are leading to tangible improvements in care quality, outcomes, and cost.
Guests from leading provider, payer, government, and other organizations share their approaches to transforming healthcare in a meaningful and lasting way.
View All Episodes
Latest News
-
GAO calls on HHS CIO to address cybersecurity deficiencies
GAO's latest report identified 82 open recommendations for the HHS CIO to implement in order to better secure government IT systems.
-
Wyden calls for FTC probe into Microsoft over Ascension hack
Sen. Ron Wyden alleged that Microsoft's "insecure software" enabled the ransomware attack against Ascension hospitals, which resulted in weeks of EHR downtime.
-
OCR, ASTP release version 3.6 of Security Risk Assessment Tool
The Security Risk Assessment Tool can help small and mid-sized healthcare organizations manage privacy and security risks and maintain HIPAA compliance.
-
New York Blood Center Enterprises discloses data breach
New York Blood Center Enterprises disclosed a data breach impacting an unidentified number of people following a January 2025 ransomware attack that disrupted operations.
-
Healthcare underperforms in vulnerability remediation: Report
The healthcare sector finds serious vulnerabilities in a timely manner, pentesting data shows, but takes longer than other industries to remediate those vulnerabilities.
-
UHG faces scrutiny over Change Healthcare loan repayment tactics
Two senators sent a letter to the UHG and Optum CEOs demanding answers about the company's "abusive" loan repayment tactics following the Change Healthcare cyberattack.
Features
-
Shadow AI in healthcare: The hidden risk to data security
In addition to traditional shadow IT, shadow AI can make healthcare organizations vulnerable to patient data exposure and compliance troubles.
-
Top strategies for securing access to EHRs
Role-based access control, zero-trust models and blockchain provide ways to reduce friction in data access for healthcare providers while ensuring the right level of security within EHRs.
-
White House health tech initiative sparks data privacy concerns
The federal government's efforts to improve the health tech ecosystem and build an interoperability framework come with potential data privacy and security concerns, experts say.
-
Biggest healthcare data breaches reported in 2025, so far
More than 29 million individuals were affected by healthcare data breaches in the first half of 2025.