New & Notable
GAO calls on HHS CIO to address cybersecurity deficiencies
GAO's latest report identified 82 open recommendations for the HHS CIO to implement in order to better secure government IT systems.
Wyden calls for FTC probe into Microsoft over Ascension hack
Sen. Ron Wyden alleged that Microsoft's "insecure software" enabled the ransomware attack against Ascension hospitals, which resulted in weeks of EHR downtime.
OCR, ASTP release version 3.6 of Security Risk Assessment Tool
The Security Risk Assessment Tool can help small and mid-sized healthcare organizations manage privacy and security risks and maintain HIPAA compliance.
New York Blood Center Enterprises discloses data breach
New York Blood Center Enterprises disclosed a data breach impacting an unidentified number of people following a January 2025 ransomware attack that disrupted operations.
Healthcare Strategies: A Podcast
-
A podcast for healthcare professionals seeking solutions to today's and tomorrow's top challenges. Hosted by the editors of Xtelligent Healthcare Media, this podcast series focuses on real-world use cases that are leading to tangible improvements in care quality, outcomes, and cost.
Guests from leading provider, payer, government, and other organizations share their approaches to transforming healthcare in a meaningful and lasting way.
View All Episodes
Latest News
-
DaVita ransomware attack impacts 2.7M individuals
Dialysis provider DaVita suffered a ransomware attack that resulted in one of the largest breaches reported to federal regulators this year.
-
Microsoft-owned company settles MOVEit lawsuit for $8.5M
A Massachusetts judge preliminarily approved a multimillion-dollar settlement over a 1.2 million-record data breach at Nuance Communications stemming from 2023 MOVEit software exploits.
-
OCR updates HIPAA FAQs following health tech initiative launch
OCR updated some HIPAA Privacy Rule FAQs in support of CMS' recent health tech initiative launch, providing clarity on permitted PHI disclosures.
-
Change Healthcare data breach victim count rises to 193 million
The Change Healthcare data breach tally has settled at 193 million, nearly double UnitedHealth Group's initial estimates.
-
77% of healthcare orgs targeted by ransomware in past year
New research shows that 53% of surveyed healthcare organizations paid the ransom when targeted by ransomware, even though ransomware payments do not guarantee recovery.
-
Healthcare remains costliest industry for breaches at $7.42M
Despite maintaining its status as the most expensive industry for data breaches, healthcare saw a sharp reduction from last year's cost of $9.77 million, IBM's annual report found.
Features
-
Key HIPAA compliance considerations for agentic AI tools
Agentic AI tools, like any other AI-powered tools, come with HIPAA compliance considerations to ensure that PHI is protected.
-
HIPAA compliance in the era of OCR's risk analysis initiative
OCR issued its 10th enforcement action under the risk analysis initiative, signaling to covered entities that compliance with HIPAA's risk analysis provisions should be a focus area.
-
How flawed security implementation drives clinician burnout
Properly implemented cybersecurity technology strikes a balance between security and usability, enabling quality patient care and privacy without adding to clinician burnout.
-
Minimizing healthcare cyberattacks with network segmentation
Network segmentation can improve security, performance and compliance across healthcare environments.