November 22, 2024 Workplace Safety: What Can Cybersecurity Learn From Reducing Physical Risk? The U.S. Bureau of Labor Statistics (BLS) recently reported historically low levels of occupational injuries and illnesses, with 2.6 million incidents reported in the private ... Read more
October 3, 2024 Global Cybersecurity Agencies Release Principles for Securing Operational Technology On October 2, 2024, a set of principles titled Principles of Operational Technology Cybersecurity was released by cybersecurity agencies from Australia, the U.S., and other international partners. ... Read more
July 25, 2024 Northern Arizona VA Healthcare System Fails to Protect its Employees Against Workplace Violence A VA medical center located in Prescott, AZ, was unable to keep its employees safe from critical and possibly fatal patient violence. This is the ... Read more
May 19, 2024 Exposure of PHI of Hypertension-Nephrology Associates Patients and Allina Health Patients Hypertension-Nephrology Associates Patients Affected by Data Theft Incident Hypertension-Nephrology Associates based in Michigan reported recently that it was targeted by a cyberattack last February 2024. ... Read more
April 3, 2024 $7.5M Theft of Grant Fund Explained by HHS Senator Bill Cassidy, M.D. (R-LA), ranking member of the Senate Health, Education, Labor, and Pensions (HELP) Committee, has questioned the Department of Health and Human ... Read more
March 25, 2024 CISA and NSA Issue Guidance Sheets on Best Practices for Cloud Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) have jointly issued a series of five cybersecurity information sheets following ... Read more
February 2, 2024 Is Ivy Pay HIPAA Compliant? Ivy Pay is HIPAA compliant for therapists who are required to comply with HIPAA due to qualifying as a covered or hybrid entity, or qualifying ... Read more
January 26, 2024 User Authentication: Key Methods to Secure Online Access in 2024 User authentication has evolved significantly, with multi-factor authentication (MFA) becoming a standard security practice in 2024. Beyond traditional MFA, advancements in technology have introduced more ... Read more
December 21, 2023 Ivanti Patches 13 Critical Avalanche Mobile Device Management Vulnerabilities Ivanti has released 22 patches to fix vulnerabilities in the Avalanche mobile device management solution, 13 of which are rated critical. Ivanti Avalanche is an enterprise ... Read more
December 20, 2023 FBI Seizes BlackCat Infrastructure – ALPHV Responds by Removing Restrictions for Affiliates An international law enforcement operation has successfully disrupted the APHV/Blackcat ransomware operation. The Federal Bureau of Investigation (FBI) was able to gain access to the ... Read more
December 13, 2023 Microsoft Patches 34 Vulnerabilities and One 0Day on December Patch Tuesday December 2023 Patch Tuesday was light on fixes for vulnerabilities, with patches released for just 34 CVEs, including one zero-day vulnerability. The 34 vulnerabilities include ... Read more
December 5, 2023 Black Basta Generated At Least $107 Million in Ransoms Since April 2022 An investigation of the Black Basta ransomware group by Corvus Insurance and Elliptic has revealed the group obtained at least $107 million in ransom payments ... Read more
November 20, 2023 CISA Publishes Healthcare Cybersecurity Mitigation Guide In New York state, the healthcare industry was the most targeted critical infrastructure sector in 2022 and attacks in the first half of 2023 have ... Read more
November 17, 2023 What is Considered PHI? PHI is considered to be health, treatment, or payment information – or any associated identifying information – that is created, received, maintained, or transmitted by ... Read more
November 15, 2023 Microsoft Patches 5 Zero-Days on November 2023 Patch Tuesday On November 2023 Patch Tuesday, Microsoft released patches to fix 63 vulnerabilities across its product suite, including 5 zero-day flaws, 3 of which are known ... Read more
November 4, 2023 Who Created HIPAA? The people who created HIPAA in the context of the Rules healthcare organizations have to comply with were Donna Shalala and her team at the ... Read more
October 13, 2023 The Role of the HIPAA Technical Safeguards The HIPAA Technical Safeguards play an important role in HIPAA compliance inasmuch as they are designed to protect and control access to electronic Protected Health ... Read more
October 2, 2023 Four Behaviors to Focus on During Cybersecurity Awareness Month October is Cybersecurity Awareness Month – A month dedicated to raising awareness of the importance of cybersecurity and sharing some of the easy steps that ... Read more
August 28, 2023 Pros and Cons of HIPAA HIPAA compliance offers benefits such as safeguarding sensitive data, empowering patients with rights, ensuring data security and confidentiality, fostering standardized healthcare transactions, and maintaining insurance ... Read more
July 23, 2023 TitanHQ Announces Security Awareness Training, Web Filtering and Email Security Product Updates The Irish cybersecurity company, TitanHQ, has recently improved its cybersecurity solutions, adding several new MSP-focused features to the WebTitan web filter and SafeTitan security awareness ... Read more
July 11, 2023 Microsoft Addresses 132 Vulnerabilities on July 2023 Patch Tuesday It’s been a busy month for Microsoft with 132 vulnerabilities addressed on July 2023 Patch Tuesday. This month’s haul includes 9 CVEs that are rated ... Read more
June 26, 2023 NSA Publishes BlackLotus Mitigation Guide The U.S. National Security Agency (NSA) has published a mitigation guide for BlackLotus malware. BlackLotus is a UEFI bootkit that is planted in the firmware ... Read more
June 16, 2023 Progress Software Urges Immediate Patching of New MOVEit Transfer Vulnerability Progress Software has issued a security advisory about another zero-day bug in its MOVEit Transfer file transfer solution that requires immediate mitigation. The flaw can ... Read more
June 13, 2023 Is Microsoft OneDrive HIPAA Compliant? Many organizations in the healthcare industry take advantage of cloud storage services because of their convenience and cost-effectiveness. Microsoft OneDrive is one of the most ... Read more
May 5, 2023 What Does it Take to Make Microsoft Teams HIPAA Compliant? To make Microsoft Teams HIPAA compliant, it is necessary to select a plan with the capabilities to support compliance, configure the platform to meet the ... Read more
April 27, 2023 4 Out of 10 Medical Devices Have Unpatched Critical Vulnerabilities A new report from the cybersecurity firm Armis has identified the riskiest connected medical devices used by hospitals in the United States. Connected medical devices ... Read more
March 29, 2023 U.S. Companies Warned About BEC Campaign Seeking Bulk Goods Purchases The Federal Bureau of Investigation (FBI) has recently issued a warning to vendors in the United States following an increase in a form of business ... Read more
March 10, 2023 What Makes an Electronic Signature HIPAA Compliant? The Department of Health and Human Services has not issued specific guidance about what makes an electronic signature HIPAA compliant other than stipulating “any electronic ... Read more
February 21, 2023 FBI Says New York Field Office Cyber Intrusion Has Been Contained Hackers have taken a rather bold step by hacking into a computer system used by the Federal Bureau of Investigation (FBI) New York Field Office. ... Read more
February 7, 2023 HIPAA Security Rule Failures Land Banner Health with $1.25M Financial Penalty Banner Health has agreed to settle alleged violations of the HIPAA Security Rule with the U.S. Department of Health and Human Services’ Office for Civil ... Read more
