The HHS Office for Civil Rights proposed a rule on Jan. 6 to update the HIPAA Security Rule, potentially affecting health systems’ security policies and operations. A Feb. 3 blog post by Coronis ...

On December 27, 2024, the Department of Health and Human Services (“HHS”) proposed substantial revisions to the 20-year-old HIPAA Security Rule. Comments on the proposal will be due within sixty days ...

As we noted in our previous blog here, on January 6, 2025, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR) published a Notice of Proposed Rulemaking (NPRM) ...

The Department of Health and Human Services and the Office for Civil Rights have announced they will be soliciting comments on a proposal to modify the Security Standards for the Protection of ...

Next month, the Department of Health and Human Services is slated to finalize the first major update to HIPAA in more than a decade, which will force hospitals to adopt more robust security measures.

In recent years, health care organizations and the vendors that support them have been prime targets for cyber attacks. Indeed, just last year, the ransomware attack on the health care clearinghouse ...

An unmitigated revamp of healthcare cybersecurity is coming in 2025, and experts warn that the compliance burden for organizations will be steep. Since 2005, healthcare organizations have been subject ...

The Department of Health and Human Services is preparing the first major HIPAA Security Rule update since 2013, with a final rule expected in 2026. Proposed changes would remove the distinction ...

The 2026 HIPAA Security Rule update is set to bring the most sweeping cybersecurity and compliance changes in healthcare since the rule’s inception. Encryption, multi-factor authentication, and ...

We collaborate with the world's leading lawyers to deliver news tailored for you. Sign Up for any (or all) of our 25+ Newsletters. Some states have laws and ethical rules regarding solicitation and ...