The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry.

In this episode, our host Britton Burton highlights the following topics trending in healthcare cybersecurity this month:

• The Federal Trade Commission’s (FTC) first Health Breach Notification Rule Enforcement action against GoodRx
• An unsurprising report from OCR on security rule compliance areas that HIPAA-regulated entities need improvement plus the most common remediation actions taken by breached entities
• Semi-definitive information about the date and final rule content of the SEC’s looming rule for publicly traded companies on Cybersecurity disclosures and risk management
• NIST’s announcement on a new lightweight cryptography algorithm that can be used by IoT and Medical Devices
• The disheartening cyber attack on the 988 suicide and mental health helpline
• Interesting new trend data on the lower volume of healthcare breaches but higher count of individuals affected by those breaches
• A recent surge in Wiper malware attacks, thanks in large part to the Russia/Ukraine war
• A fascinating narrative on cyber insurance involving exclusion of nation-state attack vectors from policies, sharper focus on TPRM programs, and a ransomware gang’s unusual request to its victims