Highly publicized breaches at Facebook, Twitter, the New York Times and other organizations in recent weeks suggest there's a new normal in the cyberthreat arena. But the onetime head of U.S. CERT, Mischel Kwon, doesn't think so.
Malware, DDoS and mobile security aside, one of the biggest risks is organizations' lack of visibility into specific threats. Don Gray of Solutionary explains the need for actionable threat intelligence.
Even the brightest technologists aren't immune from cyber-attacks. Just ask Facebook. The social-media company says it fell victim to a sophisticated attack in which an exploit allowed malware to be installed on employees' laptops.
As a result of the HIPAA Omnibus Rule, which broadens the number of organizations that must meet privacy and security requirements, demand for infosec pros in healthcare is higher than ever. Where is the greatest need?
The Office of the National Coordinator for Health IT is gearing up to release its first installment of voluntary health information exchange guidelines. Find out the timeline for this and related projects.
Roger Baker, CIO at the Department of Veterans Affairs, announced to his staff on Feb. 15 that he's resigning. Baker led a number of projects that dealt with security issues, including a breach prevention initiative.
Security and IT leaders, including John Halamka, are calling attention to the difficulty of complying with a HIPAA Omnibus provision about not passing along certain patient information to insurers. What are their concerns?
Healthcare organizations that allow staff members to use personally owned mobile devices for work-related purposes need to first develop a policy outlining the rules of the road, says federal privacy adviser Kathryn Marchesini.