New & Notable
McLaren Health agrees to $14M settlement over two data breaches
The settlement stemmed from two separate ransomware attacks that McLaren Health Care experienced in 2023 and 2024.
New Sequoia Project guidance takes aim at state-level patient consent challenges
The Sequoia Project emphasized the importance of aligning state-level health data laws with national technical standards to ease patient consent challenges.
OIG audit reveals web app security weaknesses at large hospital
Weak authentication and input validation controls made certain web apps at a large hospital in the Southeast vulnerable to cyberattacks, OIG said.
AI-powered insurance platform breach impacts 3.1M individuals
HCIactive, a company that offers AI-powered administrative solutions, reported a multi-million-record breach to state regulators.
Healthcare Strategies: A Podcast
-
A podcast for healthcare professionals seeking solutions to today's and tomorrow's top challenges. Hosted by the editors of Xtelligent Healthcare Media, this podcast series focuses on real-world use cases that are leading to tangible improvements in care quality, outcomes, and cost.
Guests from leading provider, payer, government, and other organizations share their approaches to transforming healthcare in a meaningful and lasting way.
View All Episodes
Latest News
-
2025: Double the breaches, but less patient data compromised
A consistent barrage of small healthcare data breaches defined 2025, rather than the high-impact breaches that dominated prior years.
-
KLAS highlights top healthcare IoT security vendors in 2026
Healthcare organizations are seeking IoT security solutions that offer asset visibility, as well as robust segmentation and monitoring capabilities.
-
OCR settles 54th HIPAA right of access case
Occupational health services provider Concentra will pay OCR $112,500 to resolve alleged HIPAA right of access failures.
-
Providers urge HHS to scrap proposed HIPAA Security Rule updates
Over 100 provider organizations signed a letter urging HHS to rescind its proposed updates to the HIPAA Security Rule and instead work with the industry to develop cybersecurity standards.
-
Mirion Medical issues patches for five high-severity vulnerabilities
Successful exploitation of the vulnerabilities found in Mirion Medical's EC2 Software NMIS BioDose software could allow attackers to gain access to sensitive information, CISA said.
-
Kaiser settles class-action web tracking lawsuit for $46M
Kaiser Permanente's health plan settled a class action lawsuit concerning a 2024 breach that stemmed from its alleged use of web trackers within its websites and patient portals.
Features
-
AI adoption in healthcare will spark innovation and cyber risk in 2026
In 2026, AI will continue to drive innovation, highlighting cybersecurity, privacy and governance gaps in the process.
-
10 largest healthcare data breaches reported to OCR in 2025
More than 20 million individuals were affected by the 10 largest healthcare data breaches reported to OCR in 2025.
-
Governance gaps threaten progress as healthcare AI adoption grows
Health systems are relying on AI faster than their governance structures can evolve, expanding the potential for data privacy gaps and regulatory risk, experts say.
-
After Texas ruling, states seek to fill reproductive health data privacy gaps
In the absence of federal protections, legal experts have their eyes on states laws that dictate how companies can interact with reproductive health data.