The HHS Office of Inspector General (OIG) has called for the Office for Civil Rights (OCR) to expand its HIPAA audit program and define audit effectiveness metrics following a rise in healthcare cyberattacks and data breaches. An OIG audit discovered OCR fulfilled its duties to perform periodic audits for HIPAA compliance, but did not include many of the necessary safeguards, and did not require audited entities to take corrective action. OCR was in agreement with most recommendations but cited a need for increased funding and staffing resources.
Bootkitty is the first UEFI Bootkit designed for Linux systems
Cybersecurity researchers from ESET identified the first-ever UEFI bootkit for Linux systems, known as Bootkitty. The bootkit targets the system’s signature verification feature, disabling it
