The U.S. Health and Human Services (HHS) wants to update HIPAA’s security rule for the first time in over 10 years in response to the growing cyberattacks in the healthcare industry. The proposed changes will aim to clarify instructions on securing electronic health data and require written security policies from organizations. The plan also includes a yearly update of technology asset inventories, regular risk analyses, and mandated multi-factor authentication.

The NHS needs to tighten its third-party supplier cybersecurity
The NHS should proactively fortify cybersecurity within its third-party software suppliers following recent damaging ransomware attacks, says Jonathan Lee from Trend Micro. He suggests implementing