Getting inspectors general and agencies' IT security heads to agree on how best to evaluate information security should strengthen U.S. federal government agencies' risk management frameworks, say former OMB leaders Karen Evans and Franklin Reeder.
Health privacy violations are lethal. They can create reputation management nightmares and generate stiff fines. Do you have the solutions in place to detect violations before they escalate?
Complying with the HIPAA Omnibus Rule requires a task force approach, says John Pritchard, information security manager at St. Charles Health System. Find out why Pritchard believes the rule eliminates ambiguities.
American Express confirms it was hit this week by a distributed-denial-of-service attack. The hacktivist group that has targeted banks in recent months claims credit for this latest high-profile attack.
Attacks against Facebook, Twitter and other organizations over the past few months should send a message to business owners that they need to better fund cybersecurity, IT security expert Mischel Kwon says.
The new Aurora Research Institute is taking multiple steps to protect the privacy of patients who participate in medical research, clinical trials and personalized medicine endeavors, says institute leader Randall Lambrecht.
Computer networks in nations where the government has ratified international cyber-agreements have lower incidents of malware infection, says Paul Nicholas, Microsoft senior director of global security strategy and diplomacy.
In this week's breach roundup, read about three healthcare incidents, including the theft of two unencrypted laptops that contained patient data and paper records scheduled for shredding that went missing.
The Department of Veterans Affairs is weighing legal issues before accommodating BYOD as it prepares to ramp up use of mobile devices. Meanwhile, it's inching forward with the rollout of a mobile device management system.
Was the Spamhaus DDoS incident truly the "biggest cyber-attack in history," as some media outlets dubbed it? And what relation - if any - does it have to DDoS attacks on U.S. banking institutions?
The federal budget sequester could impact health data privacy and security projects under way. Find out what could be cut - as well as the reaction from security experts and CISOs.
What are the common mistakes individuals in organizations make when it comes to data security and breaches? Craig Spiezle of the Online Trust Alliance provides insight from the latest research.
The bad guys who attack information systems are getting better at what they do, making old threats even more dangerous, says Steve Durbin of the Information Security Forum.
Organizations looking at implementing encryption should consider taking a unified approach, says Karen Scarfone, who coauthored NIST's encryption guidance. Learn about her other recommendations.
As organizations get ready to comply with the HIPAA Omnibus Rule, they also must scrutinize longstanding HIPAA compliance challenges. Experts highlight the key areas of concern.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing healthcareinfosecurity.com, you agree to our use of cookies.
