Editor’s Note Entities covered by the HIPAA security rule may soon need to adapt to more prescriptive requirements, new compliance mandates, and significantly higher costs, according to a January 24 report from TechTarget. As outlined in a December notice of proposed rulemaking (NPRM), the proposal by the Department of Health…
Editor's Note The first federal overhaul of the HIPAA Security Rule in over a decade aims to address modern cybersecurity threats but has drawn sharp criticism from health systems over its cost and feasibility, according to a January 13 article in Axios. According to the article, the proposed changes require…
Editor's Note Between 2018 and 2024, ransomware attacks on US healthcare organizations compromised nearly 89 million patient records and resulted in downtime costing an estimated total of $21.9 billion, according to a December 18 report from Comparitech. The report tallies 654 total ransomware incidents during this period targeting hospitals, clinics,…
Editor's Note "Why is healthcare cybersecurity so bad?" This is the central question explored in a December 4 video from STAT health tech reporter Brittany Trang, who also wrote an article on the subject earlier this year. Brought into sharp focus by data exposures related to the recent attack on…
Editor's Note Artificial intelligence (AI) enabled technologies present the greatest technology risk to healthcare organizations in 2025, according to the latest list from ECRI, a nonprofit organization dedicated to safety in the industry. As detailed in the organization’s December 4 announcement, the annual report highlights critical risks that healthcare organizations…
Editor's Note Hospitals’ financial outlook is stable, although growth is slowing and certain costs are projected to increase, particularly for cybersecurity, according to two recent Becker’s reports on data from Moody’s Investor Services. The first, published November 14 in Becker’s Hospital CFO Report, notes that “hospitals are facing a stable…
Editor's Note A November 13 report from The Government Accountability Office (GAO) identifies critical gaps in the Department of Health and Human Services' (HHS) ability to manage cybersecurity risks in the healthcare and public health sector. HHS, the lead federal agency for cybersecurity in this sector, faces challenges in monitoring…
Editor's Note Cybersecurity threats in healthcare are increasingly driven by third-party vendors, affecting millions of patients and hospital systems globally, experts John Riggi and Richard Staynings emphasized at the HIMSS Healthcare Cybersecurity Forum. Healthcare Finance News reported on the experts’ testimony November 5. According to the article, cyberattacks have surged…
Editor's Note Doctors facing inflationary and operational cost increases are decrying recently finalized 2025 Medicare reimbursement rates, according to a November 4 report in Healthcare Dive. The 2025 rates reduce physician payments by 2.9% while increasing rates for hospital outpatient departments and ambulatory surgery centers (ASCs) by 2.9%, the outlet…
Editor's Note The story of how the perioperative team at Ann & Robert H. Lurie Children's Hospital responded to a recent cyber event revealed insights about resilience, communication, team-building, and preparedness in one of the concluding sessions of this week’s OR Manager Conference in Las Vegas. The session was presented…