The recent amendments to the Health Insurance Portability and Accountability Act (HIPAA) represent a significant overhaul in healthcare data privacy, addressing the need to protect sensitive patient information in a digital healthcare world. The changes call for a holistic approach to data security, emphasising encryption, multi-factor authentication, enhanced risk assessments and continuous network monitoring. They also place renewed emphasis on contingency planning and extend responsibility for data protection to business associates and sub-contractors.
Dispersed responsibility, lack of asset inventory is causing gaps in medical device cybersecurity
Witnesses at a House hearing on medical device cybersecurity highlighted the need for better tracking of devices and their vulnerability to cyber threats. They noted
