Eric Chabrow
•
June 11, 2013 11 minutes 31 seconds
Regulations initially cause organizations to spend more funds on data breaches, but eventually those rules could save enterprises money, the Ponemon Institute's Larry Ponemon says in analyzing his latest study on breach costs.
On average, 86 percent of web applications have at least one serious vulnerability, and each app is attacked about 4,000 times per year, says Imperva's Terry Ray. So, how must security be improved?
When it comes to breach prevention, many organizations are improving their own security posture, but neglecting that of their strategic partners. Trend Micro's Tom Kellermann outlines third-party risks.
In an interview about virtual supply chain threats, Kellermann discusses:
Supply chain gaps organizations...
How organizations view security is about to change, says Hugh Thompson of the security firm RSA. He explains why analytics will turn everything we thought we knew about security on its head.
Many healthcare organizations can improve their risk assessments by thinking about those evaluations in a new way, says privacy and security attorney Kirk Nahra.
The latest phishing trend: the privatization of banking Trojans. Why should financial institutions be concerned? Daniel Cohen of RSA tells what to look for in the newest cross-channel schemes.
RSA's Art Coviello finds today's cybersecurity strategies to be lacking. Global organizations must rely more on big data and public-private partnerships to defend themselves from advanced threats.
Despite growing awareness of cyberthreats, Americans are not overly concerned about their own cybersecurity, Unisys' Steve Vinsik says in his analysis of his company's latest security index.
New York state residents soon will be able to use a health information exchange's portal to securely access all their records, rather than having to gain access from providers one-by-one, explains HIE leader David Whitlinger.
As interest in personalized medicine continues to grow, healthcare providers and researchers will need to be mindful of genomic data privacy and security challenges, says federal adviser Dixie Baker.
Healthcare organizations need to assess and mitigate security risks for medical devices just as diligently as they do for other information technology, says Sharon Finney, data security leader at 44-hospital Adventist Health System.
Attacks aimed at mobile devices are progressing much more rapidly than any attacks ever waged against PCs. Organizations are in danger if they don't pay attention, says anti-phishing expert Dave Jevans.
The HIPAA Omnibus Rule streamlines the process of obtaining patients' permission for use of their information in medical research projects. Privacy attorney Adam Greene sorts through the details.
Healthcare organizations need to more closely monitor how staff members access patient information to minimize "insider threats" that could compromise privacy or lead to fraud, says security consultant Mac McMillan.
Consumer advocate Deven McGraw says many provisions in the HIPAA Omnibus Rule, including better breach notification guidance and expansion of HIPAA liability to business associates, will provide substantial benefits to patients.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing healthcareinfosecurity.com, you agree to our use of cookies.