While news of the NSA's data collection caught many off guard, it's just another example of the U.S. culture of surveillance, says sociologist William Staples, author of the book "Everyday Surveillance."
Target Corp.'s revelation that personal information about up to 70 million customers was breached in a recent malware attack raises new questions about Target's security practices and risks to consumers.
The Centers for Medicare and Medicaid Services and some of its contractors need to adopt better practices for detecting healthcare fraud committed using electronic health records, a new watchdog agency report says.
As patient portals become more common in 2014, healthcare providers will struggle to find a balance between implementing strong authentication practices and providing individuals with easy access to records, says privacy attorney Adam Greene.
Georgia Tech researchers are working on a way to profile devices along the supply chain to identify whether they've been compromised, says Paul Royal, associate director of the Georgia Tech Information Security Center.
The House of Representatives is scheduled to vote Jan. 10 on two Republican bills addressing breach notification requirements and data security for Obamacare's HealthCare.gov website and health insurance exchanges.
The healthcare industry must delicately balance the need to keep medical devices secure with the need to protect patient safety, says Michael McNeil, global security and privacy leader at Medtronic, a device manufacturer.
The Department of Health and Human Services has issued a proposal that aims to remove legal barriers under the HIPAA Privacy Rule that may prevent state agencies from reporting mental health information used for gun background checks.