The US Department of Health and Human Services (HHS) has proposed updates to the Health Insurance Portability and Accountability Act (HIPAA). The revised regulations aim to bolster cybersecurity for electronic protected health information (ePHI), through mandatory data encryption, multifactor authentication, and network segmentation. Deputy National Security Adviser Anne Neuberger estimates the first-year cost at $9bn, with an additional $6bn over the following four years. The HHS is seeking public feedback before finalising the rule.

NSA warns that overlooked botnet technique threatens national security
The National Security Agency (NSA) has warned that fast flux, a technique used by cybercriminals and hostile nations to hide their activities, is a significant