Risk assessments are a HIPAA requirement. Yet, seven of the nine HIPAA penalties announced this year (78%) were levied on organizations that failed to conduct one.

In this post, we explore two cases where risk assessments were not conducted, and also highlight a free resource to help smaller organizations get the job done.

Ransomware attacks have changed. They’re more targeted, more dangerous, and causing more financial damage to victims than ever, according to the FBI.

See the industries hit hardest by the new rash of ransomware attacks – including examples of companies that ransomware killed. You’ll see the tactics being used and how to fight them.

More cyber attacks that target managed service providers (MSPs) and other IT services have surfaced, according to new research from Symantec.

See more about the attack and how it fits into a growing number of attacks against the IT industry and its clients.

Federal agencies -- including the NSA and CISA -- are alerting the public to a major security vulnerability in older versions of Microsoft Windows (pre Windows 8). Researchers fear the flaw, dubbed BlueKeep, may be used for a widespread cyber attack like the WannaCry ransomware event in 2017.

Inside, find out if you're vulnerable to BlueKeep, how to patch it, and see workarounds if you're stuck with old versions of Windows.

All five of the largest data breaches reported this year by HIPAA Business Associates share one thing: they centered on email.

In some cases, the compromise of a single email account exposed the personal information of tens-of-thousands of people. See all five breaches and more inside.

A new report from the U.S. Navy paints a bleak picture of the military’s cybersecurity structure – but it’s also loaded with insights you can use to help judge your own cybersecurity.

Check out the top insights of the report and see if you’re making any of the same mistakes that led to the Navy’s “significant compromises of classified and sensitive information.”

A new DHS report is out on cyber security in healthcare. Although it paints a grim picture of the industry’s struggle, it’s also loaded with technical tips you can use to protect your IT clients.

See the report’s top five threats to data security in healthcare, and get an in-depth look at the 10 recommended security practices to combat them.

Even the U.S. Department of Department of Defense – with a $590 billion budget – struggles with cyber security.

See examples from a new DoD report that shows that cyber security is a challenge in every organization – no matter the size.