healthcare

HIPAA Security Rule Amendment: Key Public Comments and Next Steps

HIPAA Security Rule Amendment: Key Public Comments and Next Steps

| | API Security - Analysis, News and Insights, healthcare, mobile app security, Mobile Health
Major cybersecurity breaches continue to plague the US healthcare industry, and on December 27, 2024, the U.S. Department of Health and Human Services (HHS) issued a Notice of Proposed Rulemaking (NPRM) to ...
Approov Blog
UK NHS API Flaw Exposes Critical Mobile Security Risks

UK NHS API Flaw Exposes Critical Mobile Security Risks

| | API security, API Security - Analysis, News and Insights, healthcare, mobile app security, Mobile Health
A recent vulnerability discovered in an UK National Health Service HS API has once again highlighted the risks associated with insecure mobile application programming interfaces (APIs). The flaw reportedly allowed unauthorized access ...
Approov Blog
ICYMI: Interesting Things We Learned at the HIMSS 2025 Conference

ICYMI: Interesting Things We Learned at the HIMSS 2025 Conference

| | Cybersecurity Conference, healthcare, Hospitals & Healthcare Providers
We had a good time talking to folks last week in our ColorTokens booth at the Healthcare Information and Management Systems Society conference in Las Vegas. The crowd was plentiful and engaged ...
ColorTokens
New Guidelines: Cybersecurity Resilience in the Healthcare Industry

New Guidelines: Cybersecurity Resilience in the Healthcare Industry

| | Blog Posts, Compliance, Cybersecurity, healthcare, security
Lou Morentin, VP of Compliance & Privacy There are a number of significant changes coming to Healthcare Cybersecurity requirements. While not all are finalized, they point the way towards Health and Human ...
CISO Global
Incorporating Mobile App Security into HIPAA’s Healthcare Security Rule

Incorporating Mobile App Security into HIPAA’s Healthcare Security Rule

| | API security, API Security - Analysis, News and Insights, healthcare, mobile app security, Mobile Health
A proposed update to the HIPAA Security Rule to Strengthen the Cybersecurity of Electronic Protected Health Information was issued in June 2024. Comments were requested and Approov has proposed some changes. This ...
Approov Blog
™

Bringing Breach Resiliency to Labs, Diagnostics, Devices, and Research Systems

| | healthcare, microsegmentation
The innovation ecosystems within the Healthcare and life sciences (HCLS) industry  are filled with a plethora of connected digital devices and systems – from laboratory information systems (LIMS) to critical IT systems ...
ColorTokens
Exploiting Medical Devices: Attack Vectors, Cyber Threats, and Advanced Defense Mechanisms

Exploiting Medical Devices: Attack Vectors, Cyber Threats, and Advanced Defense Mechanisms

| | healthcare, Hospitals & Healthcare Providers, microsegmentation
Imagine a scenario where a ransomware attack cripples a hospital’s ventilators, infusion pumps are manipulated to deliver incorrect dosages, or a CT scanner is hijacked to serve as a launchpad for a ...
ColorTokens
A close up of a patient monitor screen with a heart beat

CISA/FDA Warn: Chinese Patient Monitors Have BAD Bugs

| | cisa, CISA Advisories, CISA Advisory, CISA Alert, CISA cybersecurity advisory, CISA Report, CISA Research, Contec, CVE-2024-12248, CVE-2025-0626, CVE-2025-0683, Cyber Threat on Healthcare, cyberattacks in healthcare, Cybersecurity and Infrastructure Agency, Cybersecurity and Infrastructure Security Agency, Cybersecurity for Healthcare, cybersecurity in healthcare, Epsimed, FDA, FDA guidance, fda medical device cybersecurity, Food and Drug Administration, health care, Health Care Security, healthcare, Healthcare & Life Sciences, Healthcare company, Healthcare Compliance, SB Blogwatch, USFDA
China crisis? Stop using this healthcare equipment, say Cybersecurity & Infrastructure Security Agency and Food & Drug Administration ...
Security Boulevard
vulnerabilities, healthcare, breach, organizations, healthcare, cybersecurity healthcare UnitedHealth CISO

Critical ‘Backdoor’ Discovered in Widely Used Healthcare Patient Monitors 

| | Cybersecurity, healthcare, risk, Vulnerabilities
On January 30, 2025, the U.S. Food and Drug Administration (FDA) issued a safety communication regarding cybersecurity vulnerabilities in Contec CMS8000 and Epsimed MN-120 patient monitors ...
Security Boulevard
Nosferatu's shadow from the film “Nosferatu”

Ransomware Scum — Out For Blood: NYBCe is Latest Victim

| | blood, COST OF RANSOMWARE IN HEALTHCARE, Cyber Threat on Healthcare, cyberattacks in healthcare, Cybersecurity for Healthcare, cybersecurity in healthcare, exposed healthcare records, healthcare, hospital, hospital attacks, hospital cyberattack, medical, medical data breach, New York Blood Center, New York Blood Center Enterprises, NYBC, NYBCe, Ransomware, SB Blogwatch
Bloody hell: New York Blood Center Enterprises crippled by ransomware scrotes unknown ...
Security Boulevard
Load more