HealthEquity, the health tech firm, has revealed a data breach in which an unidentified third party vendor’s device was hacked and users’ data was accessed. The issue, in which “protected health information” was stolen, was uncovered in March, and the firm began investigating the issue and the responsible third-party vendor’s device. The breach was not linked to similar recent attacks.
Stakeholders Suggest Changes to CISA’s Cybersecurity Reporting Rule
Healthcare stakeholders, including the Medical Group Management Association (MGMA) and the Workgroup for Electronic Data Interchange (WEDI), have raised concerns about the Cybersecurity and Infrastructure