The Federal Trade Commission (FTC) is proposing amendments to its Health Breach Notification Rule (HBNR) to expand coverage beyond entities covered by HIPAA. The amendments would allow the use of electronic data breach notification methods, require the inclusion of third-party names in breach notifications, and clarify definitions to include non-HIPAA-covered health technologies. The FTC’s proposed changes aim to address the increasing collection of consumer health data by health apps and other direct-to-consumer health technologies. The public has 60 days to comment on the proposed amendments.
GitGuardian Researchers Find Thousands of Leaked Secrets in PyPI (Python Package Index) Packages
GitGuardian’s research reveals growing unauthorised access problems in Python’s PyPI project due to hardcoded ‘secrets’ such as API keys and passwords. Over 450,000 projects including