The Department of Health and Human Services’ Office of Technology and the Health Sector Cybersecurity Coordination Center have discussed the need for increased compliance strategies in healthcare technology. They examined key concepts and technologies and offered strategies for defense and mitigation. Issues include potential data breaches due to digitization and vulnerabilities in devices such as insulin pumps and electronic health records. Effective strategies include risk assessment, access control, incident response plans, and continuous training.
Google calls for halting use of WHOIS for TLS domain verifications
Browser makers and certificate authorities are looking to stop using WHOIS data for domain ownership verification after researchers exposed how fraudsters could manipulate the process