New York hospitals must update their HIPAA compliance programs to comply with stricter state regulations set by the New York State Department of Health, aimed at strengthening the protection of patient data, by October 2025. The regulations require hospitals to conduct risk assessments, establish cybersecurity programs, conduct vulnerability assessments, implement a cybersecurity policy, maintain systems and records, designate a CISO, establish an incident response plan, and report any cybersecurity incidents within 72 hours.

New KoiLoader Abuses Powershell Scripts to Deliver Malicious Payload
Researchers have uncovered a new strain of the advanced KoiLoader malware, believed to be distributed through phishing emails posing as bank statements. The malware employs