With flexibility in mind, NIST unveils latest draft of cyber framework

The new version of the federal Cybersecurity Framework being drafted at the National Institute of Standards and Technology will be "backwards compatible."

healthcare news

HHS working on cyber guidelines for health industry

by Shaun Waterman • 1 week ago

The U.S. Department of Health and Human Services, taking a cue from Congress, has begun developing principles and best practices for cybersecurity in health care, officials said Tuesday.

Beyond concerns about AI, consumers see usefulness — particularly in cybersecurity, privacy

by Shaun Waterman • 1 month ago

Almost two-thirds of American consumers welcome advances in artificial intelligence and machine learning, and cybersecurity is among the areas where assistance from AI has the most appeal, according to a new survey.

Federal officials say their cybersecurity paradigm is changing

by Shaun Waterman • 2 months ago

"Have your humans work on human tasks and your computers work on computer tasks."

Health care industry is king of the malicious insider threat

by Patrick Howell O'Neill • 2 months ago

The health care sector's IT suffered from malicious insider attacks at a rate far higher than any other major industry in 2016.

Hackable IoT washing machine provides channel for breaching hospital IT

by Chris Bing • 2 months ago

A software bug in the Miele PG 8528 — a model used in hospitals and other healthcare facilities to disinfect medical equipment — would allow a hacker to break into the network supporting each appliance to install malware and potentially gain access to other systems, newly published research suggests.

Two years after massive breach, U.S. government still fights to keep security audits of Anthem secret

by Patrick Howell O'Neill • 3 months ago

As the case continues to draw legal action, the full picture is not yet known by the public.

Vets lose privacy lawsuit against VA after unencrypted data is stolen from hospital

by Patrick Howell O'Neill • 3 months ago

No one knows what happened to the data after it was stolen.

HHS gets Navy vet as new cybersecurity chief

by Shaun Waterman • 4 months ago

Christopher Wlaschin retired after 28 years in the Navy in 2008 as a lieutenant commander and has held a variety of civilian jobs since, including several stints at major health care companies.

The U.S. health care sector took a beating from hackers in 2016

by Chris Bing • 4 months ago

A rise in ransomware incidents and targeted data breaches caused more than 27 million healthcare patient records to be compromised, according to research compiled by security firm Protenus in collaboration with notification service DataBreaches.net.

Hacker steals data on 34,000 patients in Quest Diagnostics data breach

by Patrick Howell O'Neill • 5 months ago

34,000 patients had sensitive medical data stolen from Quest Diagnostics who say "the risk of harm to patients is low." Impacted patients have been notified.

Seamless security: the rallying cry of Amazon Web Services

by Greg Otto • 6 months ago

Just like everything else with its thriving empire, Amazon Web Services and its partners are making serious efforts to make security as easy as possible as ever more enterprises turn to the cloud.

Windows XP is a security nightmare, yet still used by hundreds of millions

by Patrick Howell O'Neill • 7 months ago

Windows XP is old, insecure, and yet somehow still one of the most popular operating systems in the world. Over 100 million users this year include millions of consumers in China, professionals around the world in the healthcare industry, and the U.S. military are stuck on the ancient software.

Abundance of stolen healthcare records on dark web is causing a price collapse

by Chris Bing • 7 months ago

An abundance of leaked patient records stolen and posted for sale to the dark web in recent months by hackers has caused prices to drop, according to new research provided to CyberScoop and conducted by the Institute for Critical Infrastructure Technology and cybersecurity firms Flashpoint and Intel Security.

Report: 240,000 healthcare records were breached last month

by Chris Bing • 7 months ago

So much for ransomware: A new report finds that the majority of breaches are caused by insiders rather than the popular malware variant that has become nearly synonymous with the larger healthcare industry.

Report: Johnson & Johnson insulin pumps can be hacked to cause overdoses

by Chris Bing • 8 months ago

Researchers have found that the device can be exploited to cause insulin overdoses in diabetic patients, though the company contends that the actual risk of such attacks remains low.

Universities, not health care systems, facing highest number of ransomware attacks

by Chris Bing • 8 months ago

The prevalence of and perhaps damage caused by ransomware-style cyberattacks is greater in the education sector than any other industry, according to a newly released research report by security ratings firm BitSight.

Startup investors are looking to hackers for help on smart bets

by Chris Bing • 8 months ago

Investors are becoming increasingly interested in the cybersecurity posture of their portfolio companies, as well as the entrepreneurs pitching them for millions of dollars in funding, a group of security experts and investors told Cyberscoop.

HHS office announces push to investigate smaller health data breaches

by Whitney Blair Wyckoff • 9 months ago

One expert said even small breaches can have effects that reverberate across the health care industry.

FBI's Comey: Businesses need to tell us if they've been breached

by Chris Bing • 9 months ago

FBI Director James Comey wants to see private businesses more often report data breach incidents and other detected cyber intrusions when they happen directly to the Bureau. “All the information, all the evidence we need, sits in private hands in the United States and that is a wonderful thing,” Comey said, speaking at Symantec’s Government Symposium conference, Tuesday.

Pentagon watchdog will audit combatant commands' cyberwar plans

by Shaun Waterman • 9 months ago

The Department of Defense inspector general will audit how the U.S. military's combatant commands are planning for cyberwar, the watchdog said this week.

Continue to CyberScoop.com