The loss of thousands of paper records for those with coverage from health insurer Independence Blue Cross sends a strong reminder that all employees within organizations need to be trained on data security best practices.
Jan. 5 is the deadline for participation in the fourth annual Healthcare Information Security Today survey, designed to examine the privacy and security priorities and challenges of healthcare organizations of all sizes.
"The FTC has awoken to the reality that there can be no privacy without cybersecurity," says Trend Micro's Tom Kellermann, in the wake of an FTC complaint against a data broker that sold payday loan applications to third parties.
North Korea criticizes President Obama for backing the release of a comedy about the assassination of its leader, denies ordering the hacking of Sony Pictures and blames the U.S. for its Internet and mobile network outages.
The Christmas Day disruption of Sony's PlayStation store and Microsoft's Xbox Live network continue into a second day, with a hacking group known as Lizard Squad on Twitter claiming responsibility for the attacks.
While the FBI may have attributed the hack attack against Sony Pictures Entertainment to North Korea, many information security experts remain unconvinced, based on the evidence that's been released to date.
The Department of Veterans Affairs, in a cryptic message, disclosed a potential security flaw that exposed the personally identifiable information of 7,054 veterans in a patient database belonging to and managed by a vendor that provides home tele-health services to the VA.
Seeking a measured response to an attack on a non-critical infrastructure company requires carefully balancing a strong message to North Korea with one that doesn't result in escalating an encounter with a rogue nuclear nation.
A week after Sony Pictures canceled the release of the upcoming film "The Interview," the studio is now planning a limited run of the movie. Also, a congressman has sent a letter to Sony requesting details on the cyber-attack.
In determining the right time to issue a breach notification, organizations have to carefully weigh the risk of premature notification based on insufficient facts versus tardy notification that can have an impact on their reputation.