Chris Riotta reports:
The U.S. Department of Health and Human Services is ramping up digital efforts to protect Americans in a year that’s witnessed hackers targeting sensitive patient data and major breaches at Ascension and UnitedHealth.
HHS is set to unveil a notice of proposed rulemaking requiring healthcare companies to encrypt data, conduct routine compliance checks and update certain cyber standards under the Health Insurance Portability and Accountability Act. The proposal would add new cybersecurity mandates and improve existing HIPAA security regulations, which has not seen a security update in over a decade.
Read more at GovInfoSec.