Collaborate Disseminate
Today, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), announced a settlement with Montefiore Medical Center, a non-profit hospital system based in New York City for several potential violations of the Health Insu… Continue reading HHS’ Office for Civil Rights Settles Malicious Insider Cybersecurity Investigation for $4.75 Million
David DiMolfetta reports: Cybersecurity and technology trade groups are urging agencies to rethink a proposed measure that would intensify requirements for federal contractors when they report cybersecurity incidents, arguing they are inconsistent with… Continue reading Proposed contractor cyber reporting rule sets a ‘significantly problematic’ bar, industry groups say
An updated emergency directive includes instructions on how to bring affected devices back online securely.
The post CISA orders Ivanti devices targeted by Chinese hackers be disconnected appeared first on CyberScoop.
Continue reading CISA orders Ivanti devices targeted by Chinese hackers be disconnected
Jeffrey Burt reports: President Biden is warning Congressional Republicans that he will veto any attempts to overturn the Securities and Exchange Commission’s (SEC) new requirement for public companies disclosing cybersecurity incidents. In a brief pol… Continue reading Biden Will Veto Efforts to Spike SEC Breach Disclosure Rule
Skye Witley reports: SolarWinds Corp. issued a full-throated denial of wrongdoing in how it handled one of the worst cyberattacks in history in a Friday court filing seeking the dismissal of US Securities and Exchange Commission allegations that its so… Continue reading SolarWinds Seeks Dismissal of ‘Unfounded’ SEC Cybersecurity Suit
Alexander Boyd , Colin H. Black of Polsinelli PC write: Beginning on May 13, 2024, nonbanking “financial institutions” must notify the Federal Trade Commission (“FTC”) within 30 days of discovering a data breach involving the nonpublic personal informa… Continue reading Looking Ahead to the FTC’s Implementation of the Data Breach Notification Rule for Nonbanking Financial Institutions
Eric Geller reports: The Biden administration plans to unveil new cybersecurity requirements for hospitals in the coming weeks as government officials scramble to stem a disturbing tide of hacks that have crippled health-care providers, delayed procedu… Continue reading After Barrage of Hacks, Hospitals Will Face New Federal Cybersecurity Rules Tied to Funding
Chris Riotta reports: The U.S. Federal Communications Commission voted Wednesday along party lines to update 16-year-old privacy protection rules and expand breach notification requirements as part of an effort to provide law enforcement and the public… Continue reading FCC Approves Major Updates to Data Breach Notification Rules
Naomi Diaz reports: The American Hospital Association said HHS’ plan to levy financial penalties in the event of a cyberattack on a healthcare organization would be counterproductive. In a Dec. 6 statement, the AHA said it is advocating for the H… Continue reading AHA opposes HHS’ plan for cybersecurity fines
Jon Brodkin reports: Sen. Ted Cruz (R-Texas) and other Republican senators are fighting a Federal Communications Commission plan to impose new data-breach notification requirements on telecom providers. In a letter sent to FCC Chairwoman Jessica Rosenw… Continue reading Ted Cruz wants to stop the FCC from updating data-breach notification rules