The CyberPHIx Roundup is your quick source for keeping up with the latest cybersecurity news, trends, and industry-leading practices, specifically for the healthcare industry. 

In this episode, our host Britton Burton highlights the following topics trending in healthcare cybersecurity this month: 

• The Federal Trade Commission’s (FTC) first Health Breach Notification Rule Enforcement action against GoodRx 
• An unsurprising report from OCR on security rule compliance areas that HIPAA-regulated entities need improvement plus the most common remediation actions taken by breached entities 
• Semi-definitive information about the date and final rule content of the SEC’s looming rule for publicly traded companies on Cybersecurity disclosures and risk management 
• NIST’s announcement on a new lightweight cryptography algorithm that can be used by IoT and Medical Devices 
• The disheartening cyber attack on the 988 suicide and mental health helpline 
• Interesting new trend data on the lower volume of healthcare breaches but higher count of individuals affected by those breaches 
• A recent surge in Wiper malware attacks, thanks in large part to the Russia/Ukraine war 
• A fascinating narrative on cyber insurance involving exclusion of nation-state attack vectors from policies, sharper focus on TPRM programs, and a ransomware gang’s unusual request to its victims