I talk all the time about third-party or supply chain breaches and there is serious impact to them. Here is one example going on now. Change Health is a healthcare payment facilitator among other services. They are used by doctors, pharmacies and hospitals to get paid. Change is owned by Optum Health which, in turn, […]
Continue reading → [DISPLAY_ACURAX_ICONS]Health and Human Services (HHS) says it is planning to take a range of actions to reduce cyberattacks on hospitals which have gone a bit crazy in the last few years. They released the proposal yesterday. The plan is to tie the new cybersecurity requirements through the Medicare and Medicaid programs, tying payments to baseline […]
Continue reading → [DISPLAY_ACURAX_ICONS]When I say “help”, I mean that only in the kindest of terms, such as placing the company under a 20 year monitoring program, among other assistance. In this case, a company called Easy Healthcare has a free ovulation tracking app. As most of you well know, if it is free, you are the product. […]
Continue reading → [DISPLAY_ACURAX_ICONS]This is a secondary problem of vendor cyber risk. The first problem is that you are dependent on a lot of vendors. You have to depend on those vendors. If they screw up, you get sued. And you lose customers. To make matters worse, when one of your vendors gets breached, you are only one […]
Continue reading → [DISPLAY_ACURAX_ICONS]The stakes in getting breached are definitely increasing. Historically, victims of a breach have sued the breached company claiming some potential future, but vague, damages. Often the suits get thrown out saying that these potential future damages are not sufficiently real. Independent Living Systems is a VENDOR to healthcare providers in Florida. They were breached […]
Continue reading → [DISPLAY_ACURAX_ICONS]Dr. Suzanne Schwartz of the Food and Drug Administration, says the new cybersecurity requirements for medical devices in the $1.7 trillion spending bill Biden recently signed is a game changer. Up until now, if the manufacturer patched a device, or it a hospital patched the operating system of one of these devices, the device was […]
Continue reading → [DISPLAY_ACURAX_ICONS]