Some healthcare providers already meet potential new HIPAA security requirements, but others may face significant challenges.

Despite years of federal warnings, many HIPAA regulated organizations neglect to expand their security risk analysis very far beyond electronic health records, said ...

Key Takeaways Healthcare breaches have cost an eye‑watering $7.42 million per incident in 2025, and it’s not surprising that ...

Major proposed changes to security guidance related to HIPAA compliance have been underway, with the expectation that ...

The HIPAA Security Rule was originally promulgated over 20 years ago. While it historically provided an important regulatory floor for securing electronic protected health information, the Security ...

The U.S. Department of Health and Human Services (HHS) has issued a Notice of Proposed Rulemaking (NPRM) that strengthens the Security Rule of the Health Insurance Portability and Accountability Act ...

Melanie Fontes Rainer, HHS OCR director, speaking at a HIPAA summit this week (Image: Marianne Kolbasuk McGee) As the final months of the Biden administration wrap up, regulators at the agency charged ...

A recent security breach at a Derby, Conn., hospital highlights some risks that could easily plague an ASC, an imaging center, or any physician-owned medical facility. In March, Griffin Hospital, a ...

The HHS wants to update the HIPAA security rule for the first time in more than a decade to bolster healthcare cybersecurity, regulators said late last month. The Office for Civil Rights, which ...

The Department of Health and Human Services has filed proposed modifications to the Health Insurance Portability and Accountability Act of 1996 security rule to strengthen the cybersecurity of ...

In examining how the Office of Civil Rights administered its periodic Health Insurance Portability and Accountability Act audit program from January 2016 through December 2020, the U.S. Department of ...