Recognizing the security workforce shortage is one thing. Addressing it is quite another. What will it take to truly grow the workforce? Diana Burley of The George Washington University shares her vision.
A new $800,000 HIPAA settlement between federal regulators and an Indiana community health system is another reminder that protecting paper patient records is just as important as safeguarding electronic records. Find out the settlement details.
Current and former patients of a New York radiology practice are being notified that a former staff radiologist acquired protected health information from the practice's billing systems without authorization.
Two months after the OpenSSL flaw known as Heartbleed was discovered, remediation efforts have slowed. But several security experts laud businesses' rapid response to the threat, noting that they've installed related fixes more quickly than usual.
A GOP report offers a scathing assessment of technical and management issues - including security practices - that contributed to the troubled launch of HealthCare.gov. Meanwhile, HHS announces new management positions for the Obamacare project.
A DDoS attack and subsequent data breach that led to the shuttering of source code hosting firm Code Spaces offers an eye-opening reminder to be aware of attacks used as a diversionary tactic to draw attention away from devastating hacking.
If the NSA's meddling in NIST cryptography standards soiled the reputation of the National Institute of Standards and Technology, an amendment approved by the House of Representatives could help restore it.
A handful of cybersecurity bills could come up for votes next week in Senate committees. But will the entire Senate get to vote on the measures? No major cybersecurity bill has passed the Senate since 2002.
In another twist in the ongoing dispute between the FTC and LabMD, a House Committee is investigating the relationship between the commission and a security vendor that is at the center of a data security case against the medical testing lab.
A privacy activist's case against Facebook for allegedly sharing Europeans' personal data with the NSA in violation of EU data protection rules has been referred to the European Court of Justice for review.
A report from the Rand Corp. says the dearth of cybersecurity professionals puts the U.S. at risk, but the situation should improve. The NSA, however, is successfully attracting IT security specialists.
Letting women make mistakes, as men are allowed to do, could help grow the female IT security workforce from its current level of less than 30 percent. That's a conclusion of a panel of IT security experts assembled by Information Security Media Group.
To help prevent data breaches involving business associates, healthcare organizations need to develop vendor management programs with razor-sharp requirements, says risk management expert Rocco Grillo.