As cyber threats evolve, legal provisions like the Health Insurance Portability and Accountability Act (HIPAA) may not be sufficient to protect healthcare data. Proposed legislation, including the Healthcare Cybersecurity Act and the Health Infrastructure Security and Accountability Act (HISAA), could strengthen protections. However, these fail to address non-traditional health data like fitness tracker information. A more comprehensive approach is required, encompassing consumer health data and collaboration between tech and healthcare companies, as well as robust leadership from CISOs.
The NCSC wants developers to get serious on software security
The NCSC’s new Software Security Code of Practice has been praised by cyber professionals as a significant advancement in enhancing software supply chain security.
