The US Department of Health and Human Services (HHS) has proposed updates to the Health Insurance Portability and Accountability Act (HIPAA) to better protect against cyberattacks. The changes would eliminate the distinction between “required” and “addressable” security rules, make all cybersecurity rules mandatory, and standardize security processes, including two-factor authentication, data encryption, and network segmentation. However, some experts warn smaller providers may struggle with the operational burden and cost of compliance.

Singapore: Health Sciences Authority launches public consultation on the Best Practices Guide for Medical Device Cybersecurity
The Health Sciences Authority (HSA) has revealed its Best Practices Guide for Medical Device Cybersecurity. The guide provides advice for pre-market and post-market stages of