The recent amendments to the Health Insurance Portability and Accountability Act (HIPAA) represent a significant overhaul in healthcare data privacy, addressing the need to protect sensitive patient information in a digital healthcare world. The changes call for a holistic approach to data security, emphasising encryption, multi-factor authentication, enhanced risk assessments and continuous network monitoring. They also place renewed emphasis on contingency planning and extend responsibility for data protection to business associates and sub-contractors.
Account Compromise and Phishing Top Healthcare Security Incidents
In 2024, 84% of healthcare organisations experienced a cyber-attack, with account hijacking and phishing being the most common, states Netwrix. These attacks have significant financial
