Clearwater is proud to sponsor McDermott HealthEx 2026, a premier gathering of leaders from across the healthcare provider ecosystem.
McDermott HealthEx | May 20-21, 2026 | Nashville, TN
read more
Advisory for AI-Driven Vulnerability Discovery
Published April 29, 2026 Anthropic’s Project Glasswing signals a structural shift in vulnerability discovery. AI models are finding and enabling the exploitation of software flaws faster than human teams can respond. Anthropic’s Project Glasswing signals an...
Advisory for Microsoft Teams Helpdesk Impersonation Attacks
Published April 24, 2026 Microsoft has recently warned of an increase in real‑world cyberattacks abusing Microsoft Teams external chat to impersonate IT helpdesk personnel. In these incidents, attackers pose as trusted internal support staff and persuade users to...
HIPAA Security Rule Enforcement: Where Things Stand in 2026
For healthcare leaders trying to read the regulatory tea leaves, the honest answer in spring 2026 is this: the rules are not final, but the expectations haven't gone away. There's a particular kind of frustration that healthcare IT and compliance officers know well:...
Understanding CMS’s Health Technology Ecosystem Initiative: Legal, Policy, and Interoperability Risk
AHLA’s Speaking of Health Law | Sponsored by Clearwater The CMS Health Technology Ecosystem Initiative signals a broader shift in how health data is expected to move across providers, payers, networks, and consumer-facing tools. In this episode of AHLA Speaking of...
SQL Injection in OpenEMR Identified and Recommendations
This post documents a blind time-based SQL injection in the PostCalendar module discoveredin OpenEMR 8.0.0. The SQL Injection is exploitable by an authenticated admin user and illustrates how a single determined attacker with a valid session can move from nuisance to...
Mythos and Like AI Tools Raise Stakes for Healthcare Cyber
Experts Warn of Faster and Higher Volume Attacks, Rising Patient Safety Worries
Identity Under Pressure: Why Access Management Is Now a Patient Safety Issue in Healthcare
For years, healthcare cyber risk was framed around the perimeter. Firewalls. Endpoints. Network defenses. The digital equivalent of locked doors and reinforced windows. That model no longer reflects how healthcare operates. Care now runs across cloud platforms, EHRs,...
CMMC and Health Care Organizations: Applicability, Risk, and Readiness
AHLA’s Speaking of Health Law | Sponsored by Clearwater The Cybersecurity Maturity Model Certification (CMMC) is gaining attention. Although CMMC originated within the Department of Defense, its reach is expanding into the health care ecosystem, often in ways that...
CMMC in Healthcare: What Cybersecurity Leaders Need to Know | Podcast
AHLA’s Speaking of Health Law | Sponsored by Clearwater Cyber risk in healthcare is no longer defined solely by HIPAA. As organizations become more connected to federal agencies, research partners, and complex vendor ecosystems, new requirements are entering the...