The National Institute of Standards and Technology has rewritten federal cybersecurity standards for the first time in nearly a decade to address evolving smartphone vulnerabilities and foreign manipulation of the supply chain, among other new threats.

There is no lack of commercially available tools to counter rapidly evolving cyber threats, but putting them into place and having them work together efficiently can be a challenge.

The Department of Health and Human Services will issue a "suite" of guidance to help healthcare providers, business associates and patients better understand how to comply with the HIPAA Omnibus Rule, an HHS attorney says.

Four months after the Federal Trade Commission passed sweeping updates to the children's online privacy law, the agency released a key document that websites and mobile apps directed to children will need to consult in order to become compliant by July 1.

Microsoft Corp. today announced the release of a new, revised version of its HIPAA Business Associate Agreement (BAA) for the company’s next-generation cloud services. This enables customers in the healthcare industry to leverage cloud solutions to coordinate care, improve patient health outcomes, and maintain compliance with privacy and security regulations issued under the U.S. Health Insurance Portability and Accountability Act (HIPAA) of 1996. Addressing HIPAA is embedded in the DNA of Microsoft’s cloud solutions, and Microsoft updated its BAA to help healthcare organizations address compliance for the final omnibus HIPAA rule, which went into effect March 26. Microsoft’s updated BAA covers Office 365, Microsoft Dynamics CRM Online and Windows Azure Core Services.

Box, a cloud storage and information sharing platform used in many different industries, has announced a major expansion of its healthcare focus. Among other things, Box has revealed 10 new partner applications, an investment in iPad-native electronic health record (EHR) vendor Drchrono, its compliance with the latest HIPAA security rules, and a list of some healthcare organizations that are using its services.

The Defense Department on April 22 issued a new directive outlining the roles and responsibilities of the Pentagon's chief information officer, updating nearly decade-old governance to include some of DOD's most pressing concerns.

The National Institutes of Standards and Technology is spearheading efforts to establish a new federally funded research and development center through its National Cybersecurity Center of Excellence. The goal of the FFRDC is to create a neutral venue for collaboration between government and industry that will accelerate progress in implementing cybersecurity.

Adoption of cloud services by UK government bodies grew sharply in March, with sales through the public sector's CloudStore portal during the month reaching more than half that of the entire year before.

The Homeland Security Department is working to implement 11 recommendations from an advisory council to better develop, recruit and retain sophisticated cybersecurity talent.