Starting now, healthcare organizations using Microsoft Windows XP-based medical devices better have short- and long-term strategies to address cybersecurity, says medical device security researcher Kevin Fu.
In many if not most enterprises, the chief information security officer reports to the chief information officer. After all, enterprises cannot function without IT, and security is a support function to safeguard data and systems. Or is it?
Information services firm Experian is responding to news that two states are investigating a breach involving a subsidiary that allegedly provided information to a cybercriminal, saying there's been "inaccurate information" circulating online.
The recent discovery of malware on a server storing health data used for research has prompted Kaiser Permanente to contact 5,100 patients about a potential privacy breach. The malware infection went undetected for more than two years.
The estimate of the total number of victims affected by a recent breach affecting two Los Angeles County public health departments has more than doubled. Find out details about the incident, which involved stolen PCs.
To boost cybersecurity, senior leaders - whether a CEO, a board member or a government agency director - need to think of information as a critical asset worthy of protection, risk management experts Val Rahmani and Malcolm Harkins say.
At a Senate hearing, GAO previewed a report that shows cyber-incident response shortcomings at federal agencies. And the FTC chair asked Congress for broad authority in enforcing a federal data breach notification law - if one is enacted.
Information security and privacy work in healthcare environments often requires a depth of specialized knowledge and competency that can be validated through the help of professional credentialing, says CISO Sean Murphy.
A politically conservative watchdog group has filed a lawsuit in an attempt to get answers to its questions about the security of HealthCare.gov, the website for Obamacare. Meanwhile, HHS says the site has had no security incidents.