Late last year, the US Department of Health and Human Services (HHS) introduced a more prescriptive regulatory framework for the HIPAA Security Rule, which comes at a critical time.
As the industry faces unprecedented numbers of breach-related sensitive record exposures, it’s clear healthcare organizations and their supporting partners need to do more to protect patient data, but is the Notice of Proposed Rulemaking (NPRM) to update the HIPAA Security Rule the answer?
Featured on the AHLA Speaking of Health Law Podcast Host: Dave Bailey, VP of Security Services, Clearwater Guests: Kirk Nahra, Partner at WilmerHale, Co-Chair of the Cybersecurity and Privacy Practice, Paul Schmeltzer, Member at Clark Hill, Counsel to healthcare...
The Ohio-based system says its call center was affected and customers are getting calls from individuals claiming to work for Kettering and seeking payment.
Ransomware attacks within the health-care sector have climbed in recent years, in part because patient data is valuable and relatively easy for cybercriminals to exploit…
Financially constrained hospitals and health systems need federal funding and support to augment their cybersecurity workforces, according to a Health Sector Coordinating Council report to HHS.
A cyberattack doesn’t always start with an exposed perimeter. Sometimes, all it takes is a single compromised workstation — compromised through social engineering attacks, use of weak access management. To help clients gauge the potential for a breach to occur through these attack vectors, I and my colleagues on Clearwater’s Technical Testing team perform what is called assumed breach testing – a cybersecurity assessment that evaluates an organization’s ability detect, respond to, and recover from a breach.
Evolving State Privacy Laws: What Digital Health Leaders Must Know As the digital health landscape rapidly evolves, so do the complexities of healthcare data privacy. In this episode of AHLA’s Speaking of Health Law Clearwater’s Omenka Nwachukwu sits down with Kaitlyn...
Cybersecurity: The Overlooked Risk in Healthcare Private Equity In today’s investment landscape, financial, operational, and market risks are meticulously analyzed before any deal closes. Yet one critical risk is still too often overlooked... cybersecurity. And in...
The cybersecurity world descended on San Francisco last week for RSA Conference 2025, and Clearwater was proud to be there alongside our Redspin colleagues. From AI to identity, from innovation to infrastructure, this year’s RSA reflected both the rapid evolution of cybersecurity technology, and the mounting pressure on organizations to stay ahead of new threats. Here’s what stood out to our team on the ground.
As technology advances in healthcare, so does providers’ exposure to cybersecurity incidents.