Blog
We know you have many questions. That’s why our team has curated top-notch resources to help you along your healthcare cybersecurity and compliance journey.
Compliance & Cybersecurity & Risk Management Blogs from Industry Experts
Filter by Topic:
- All
- Artificial Intelligence
- Cloud
- CMMC
- Compliance
- Cyber Briefing
- Cyber Risk Management
- Cybersecurity
- Digital Health
- Due Diligence
- HIPAA
- HITRUST
- Incident Response & Planning
- Medical Device Security
- NIST-800-171
- OCR Enforcement
- Privacy
- Resiliency
- Risk Analysis
- Security Control Validation
- Security Management
- Threat Information
- Vendor Risk Management
- Vulnerability Management

How HITRUST r2 Measured and Managed Maturity Are Scored
Why Your Score Stops at 75% and How to Build Past It
A conversation we have near the end of r2 assessments has ...

The Clock Is Running. So Are They.

Why Some Hospitals Still Require EPCS Certification Every Two Years
Many hospitals assume that deploying a DEA-compliant, certified electronic prescribing for controlled substances ...

Termite Ransomware: Steganographic In-Memory Attack Analysis
Author: Tyler L. Jones, Principal Cybersecurity Analyst | Security Operations
The post ...

What Are Immutable Backups and Why Does HITRUST Require Them?
What Are Immutable Backups?
An immutable backup is a backup copy stored so that, once written, it cannot be ...

HITRUST Illustrative Procedures Are Not Optional
In HITRUST, illustrative procedures are not optional examples; they define exactly how assessors test your ...

The Overlooked HITRUST Scoping Risk Could Be Your Leased Office
Should your leased office be at the table for r2 HITRUST scoping

HITRUST CSF v11.8.0

Advisory for AI-Driven Vulnerability Discovery
Published April 29, 2026
Anthropic’s Project Glasswing signals a structural shift in vulnerability discovery. AI ...

Advisory for Microsoft Teams Helpdesk Impersonation Attacks
Published April 24, 2026
Microsoft has recently warned of an increase in real‑world cyberattacks abusing Microsoft ...

HIPAA Security Rule Enforcement: Where Things Stand in 2026
For healthcare leaders trying to read the regulatory tea leaves, the honest answer in spring 2026 is this: the ...

SQL Injection in OpenEMR Identified and Recommendations
This post documents a blind time-based SQL injection in the PostCalendar module discoveredin OpenEMR 8.0.0. The ...
No results found.
