Ensuring patient privacy is protected as more electronic health records are exchanged will be one of the top challenges for the Office of National Coordinator for Health IT's next chief privacy officer, says ONC's former privacy chief, Joy Pritts.
A new handbook from the National Association of Corporate Directors, titled Cyber-Risk Oversight, offers five principles to guide boards of directors in helping their organizations address IT security threats.
The federal tally of major health data breaches has grown substantially in recent weeks. Incidents added over the last month provide examples of the variety of risks that healthcare entities continue to battle.
A senior White House official says the Cybersecurity Information Sharing Act of 2014, which a Senate committee passed earlier this month, needs to have its privacy and civil liberties protection provisions strengthened to win presidential support.
An alleged hacker based in the United Kingdom has been indicted for a third time. The latest charges allege he infiltrated computers at several U.S. government agencies, including the Department of Health and Human Services.
A physician who formerly owned several Texas hospitals is facing years in federal prison after being convicted by a jury of several counts of healthcare fraud and identity theft. A related case is still pending.
The Department of Health and Human Services inspector general has criticized HHS for failing to implement security controls on the system that provides computerized access to physical facilities and computer networks.
A House panel, at a July 24 hearing, considered whether the Federal Trade Commission is overstepping its regulatory authority over data security and relying on questionable information in its investigations. Find out what witnesses had to say.
The Massachusetts attorney general has reached a $150,000 HIPAA settlement with a Rhode Island hospital in the wake of a 2012 data breach that affected 14,000 patients, most of whom were from Massachusetts.
Google and Microsoft met with European regulators in Brussels July 24 to discuss their compliance with the "right to be forgotten" ruling and whether it should apply to all of their search engine sites - and not just those in Europe.