Feds Say ChangeHealth Can File Breach Notice on Behalf of Doctors After All Changing your mind … is a federal agency’s prerogative, apparently. Normally under HIPAA, it is the doctor or hospital that has to file the breach notice and until this week, that was the fed’s (HHS) position for the ChangeHealth breach. However, smarter […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
While it seems that some companies continue to be clueless and others get fined (and sued) for delaying reporting breaches, the window (and door) is closing rapidly on that. The SEC says that publicly traded companies have 4 days after determining that a breach is material to file an 8-K to notify investors. DoD contractors […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
Given the announcement every day of a new breach, that CISO’s confidence is growing is a bit strange. I think it is more how the media is viewing the numbers. 70 percent of surveyed CISOs feel at risk of a material cyber attack over the next 12 months. That is up from 68 percent last […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
First it was cybersecurity laws. Then it was breach notification laws. Then first generation privacy laws. Then second generation privacy laws. Now it is AI laws. What is interesting is the velocity. It took over 15 years for all states to have a cybersecurity law. We now have 17 or 18 states that enacted second […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
The government is escalating their response to cyber attacks and they are having a little bit of success, but as we have seen recently, that means that they are also going against companies that do not have adequate security. In addition, we have seen that they are going the people in those companies who should […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
White House Preps New Cyber Rules for Healthcare After ChangeHealth Breach Anne Neuberger, Deputy National Security Advisor for Cyber says that after a decade of pleading with hospitals to protect your data, they are getting ready to roll out regulations. The hospitals say don’t penalize us by making us protect your data; why do we […]
Continue reading →
[DISPLAY_ACURAX_ICONS]