Nashville-based company Change Healthcare was hit by a major cyberattack in February, reflecting the growing risk of such breaches as threats become more frequent and sophisticated. Firms need to adopt best practices such as two-factor authentication, frequent password changes, and comprehensive tech visibility. Threats to healthcare data have become a significant concern due to the value of medical records and the desire to disrupt key infrastructure. Companies should also obtain SOC-2 certification or HITRUST assessments to validate their security measures.