OCR Releases Cybersecurity Video: Ransomware Update

An announcement from HHS OCR:

In recognition of National Cybersecurity Awareness Month, OCR has produced a new video this October to provide awareness and education for organizations covered under the HIPAA Rules on ransomware and how compliance with the HIPAA Security Rule can help such organizations combat ransomware.

This video updates the health care industry on the ransomware trends OCR sees in its cybersecurity investigations, OCR guidance and resources, best practices and practical advice on how HIPAA compliance can help HIPAA regulated entities prevent, detect, respond to, and recover from ransomware attacks. Topics include:

OCR breach and ransomware trend analysis

Review of prior OCR ransomware guidance and materials

Analysis of the ransomware attack chain

Explore how Security Rule compliance can combat ransomware

The video presentation may be found on OCR’s YouTube channel at: USGovHHSOCR

A business's cyber insurance policy included ransom coverage, but when they needed it, the insurer refused to pay. Why?
The Alliance That Wasn’t: A Critical Analysis of ReliaQuest’s Q3 2025 Ransomware Report
Heritage Provider Network $49.99M Class Action Settlement
Qilin Ransomware and the Ghost Bulletproof Hosting Conglomerate
Watsonville Community Hospital had a data breach -- or two. It would be helpful to know which.
DragonForce, LockBit, and Qilin, a new triad aims to dominate the ransomware landscape (1)

Related: