Blog
We know you have a lot of questions. That’s why our team has curated top-notch resources to help you along your healthcare cybersecurity and compliance journey.
OCR Doubles Down: Risk Analysis Now a Key Enforcement Priority
Is Your Organization an Attractive Target for Cybercriminals?
Office for Civil Rights (OCR) Director Melanie Rainer wants you to consider this question seriously.
Clearwater Cyber Briefing: Key Trends and Takeaways for October 2024
In today’s ever-evolving threat landscape, staying ahead of cybersecurity risks is more critical than ever for healthcare organizations. That’s why, each month, Clearwater Security delivers a Cyber Briefing, providing a comprehensive digest of the latest news, emerging threats, and key updates from across the healthcare cybersecurity ecosystem.
New York’s Updated Cybersecurity Regulations: A Step forward in Healthcare Protection
Cyberattacks targeting healthcare organizations have been on the rise, and New York State is stepping up its defenses. As of October 2, 2024, new cybersecurity regulations are in effect for general hospitals in the state, marking a significant step forward in protecting sensitive patient data and ensuring the operational resilience of healthcare facilities.
Perspective on the Proposed Health Infrastructure Security and Accountability Act
The Health Infrastructure Security and Accountability Act (HISAA) introduced in the U.S. Senate on September 26 is another good step forward in addressing key factors contributing to the healthcare sector’s deficiency in establishing and maintaining adequate cybersecurity controls and risk management programs. While there are many in the sector that are already implementing recognized standards, having mandated standards would help to make sure everyone is playing by the same rules.
Reproductive Health Privacy Rule Lawsuit May Signal Shift in Balance of Power
On September 4, 2024, the State of Texas filed a lawsuit in the U.S. District Court, Northern District of Texas, against the U.S. Department of Health and Human Services (HHS), challenging both the HIPAA Final Rule to Support Reproductive Health Care Privacy (issued April 22, 2024) and the HIPAA Privacy Rule (issued December 28, 2000).
Understanding CMMC for Healthcare Organizations
Healthcare organizations reported the highest number of ransomware attacks among the 16 industries classified as critical U.S. infrastructure last year, according to the 2023 FBI report on Internet crime.
Changing the Conversation about Cybersecurity in Healthcare
Recent major cyberattacks highlight a crucial reality for healthcare: cybersecurity is now a critical factor impacting patient care and your organization’s ability to fulfill your mission.
Incident Response Plans: Your Key to Successfully Mitigate Breach Damage and Expenses
A cyberattack impacts healthcare organizations far beyond the initial days of detection and containment. ...
Understanding Business Email Compromise and Common Social Engineering Tactics
Each day, threat actors send nearly 3.5 billion phishing emails. It takes just one click by one of your employees ...
What to Expect During an OCR Audit or Investigation and How to Prepare
This blog is based on part four of our 5-part webinar series, “HIPAA Audits Are On The Way—Are You Ready?” Access ...
Navigating Best Practices for HIPAA, 405(d) and CPGs
This blog is based on part five of our 5-part webinar series, “HIPAA Audits Are On The Way—Are You Ready?” Access ...
Mitigating Common Active Directory Certificate Services Attacks For Healthcare Organizations
Author: Fabian Crespo
Introduction
Active Directory Certificate Services (AD CS) is a critical component of ...
Newsletter
Sign up for our monthly newsletter discussing hot topics and access to invaluable resources.
Featured Resource
Introduction
If you're preparing for a SOC 2 assessment, you know that establishing trust and addressing ...