720-891-1663

Security News Update for October 11, 2024

Microsoft Confirms MMC Bug Being Exploited – No Patch I could tell you to patch the bug but, for the 23rd time this year, the bug is being exploited in the wild and there is no patch. The bug, rated 7.8/10, is in the Microsoft Management Console tool and it was not among the 119 […]

Continue reading → [DISPLAY_ACURAX_ICONS]

NY Forces Hospitals to Improve Cybersecurity

Unfortunately, this may be the only way to get some businesses to improve their cybersecurity practices. Hew York is using its regulation of financial services firms as a model to regulate the security of its 152 “General” hospitals. Those are hospitals that  “provide medical or medical and surgical services primarily to in-patients by or under […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Security News Update for the Week Ending May 31, 2024

Feds Say ChangeHealth Can File Breach Notice on Behalf of Doctors After All Changing your mind … is a federal agency’s prerogative, apparently. Normally under HIPAA, it is the doctor or hospital that has to file the breach notice and until this week, that was the fed’s (HHS) position for the ChangeHealth breach. However, smarter […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Security News Update for the Week Ending May 17, 2024

White House Preps New Cyber Rules for Healthcare After ChangeHealth Breach Anne Neuberger, Deputy National Security Advisor for Cyber says that after a decade of pleading with hospitals to protect your data, they are getting ready to roll out regulations. The hospitals say don’t penalize us by making us protect your data; why do we […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Security News Update for the Week Ending April 26, 2024

HHS Beefs up Privacy Protection for Reproductive Healthcare Info In a final rule released this week, doctors, clinics and other providers are prohibited from disclosing protected health information related to lawful reproductive healthcare. The rule is designed to protect women who cross state lines seeking an abortion and their providers. The 291 page regulation will […]

Continue reading → [DISPLAY_ACURAX_ICONS]

The Impact of Supply Chain Cyberattacks

I talk all the time about third-party or supply chain breaches and there is serious impact to them. Here is one example going on now. Change Health is a healthcare payment facilitator among other services. They are used by doctors, pharmacies and hospitals to get paid. Change is owned by Optum Health which, in turn, […]

Continue reading → [DISPLAY_ACURAX_ICONS]