Cyber threats and cybersecurity controls have evolved significantly over the past two decades since the HIPAA Security Rule were originally promulgated. During this same time, healthcare entities have increasingly become a prime target of hackers seeking to extort payment using ransomware, exfiltrate patient data to commit fraud, or disrupt operations in other nefarious ways. Recognizing these challenges, some security professionals have sought further clarity on the HIPAA Security Rule that they deem to be “long in the tooth”. Yet, regulators have not made any ...
According to a report by West Monroe Partners, approximately 40% of companies engaged in corporate transactions reported finding a cybersecurity issue during post-acquisition integration of the target company. While companies routinely conduct robust transactional due diligence to manage legal risk, many fail to adequately conduct cybersecurity due diligence. As a consequence, many companies and investors are leaving themselves vulnerable to potentially severe latent cyber risks.
Cybersecurity is especially relevant in healthcare transactions as the industry ...
Blog Editors
Recent Updates
- Last Call for Comments on the Bipartisan Discussion Draft of the SUSTAIN Act: Shaping 340B for the Future
- Indiana Senate Enrolled Act 9 Requires Written Notice of Health Care Entities’ Mergers or Acquisitions
- Connecticut Bill Calls for Office of Health Strategy to Develop a Plan Regarding Private Equity Firms in Health Care
- Revised OCR Guidance Provides New Examples, but Raises More Questions, Regarding Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates
- FDA Releases Draft Guidance on New Dietary Ingredient Notification Procedures, Timelines