Podcasts about Change Healthcare

Parce que… c'est l'épisode 0x589! Shameless plug 03 au 05 juin 2025 - Infosecurity Europe 27 et 29 juin 2025 - LeHACK 12 au 17 octobre 2025 - Objective by the sea v8 10 au 12 novembre 2025 - IAQ - Le Rendez-vous IA Québec 17 au 20 novembre 2025 - European Cyber Week 25 et 26 février 2026 - SéQCure 2065 Description Le Dr. Benoit Desjardins est radiologiste à l'Université de Montréal depuis mai 2023, après avoir passé 35 ans aux États-Unis. Expert mondial dans trois domaines distincts - l'imagerie médicale, la cybersécurité et l'intelligence artificielle - il a notamment travaillé comme consultant pour le FBI et siège dans d'importants comités de cybersécurité aux États-Unis. Son parcours multidisciplinaire lui permet d'apporter une perspective unique sur les enjeux de sécurité informatique dans le milieu médical. L'ampleur des cyberattaques dans le secteur médical Aux États-Unis, les cyberattaques contre les établissements de santé augmentent de façon exponentielle depuis 2009. Plus de 6600 brèches de sécurité touchant au moins 500 dossiers médicaux ont été documentées. La plus importante, survenue l'an dernier contre Change Healthcare, a affecté 190 millions de dossiers médicaux et touché plus de 2000 hôpitaux et 400 000 professionnels de la santé. Selon le Dr. Desjardins, environ 94% des hôpitaux américains ont été victimes de cyberattaques, et les 6% restants ignorent probablement qu'ils ont été compromis. En réalité, tous les établissements de santé sont constamment ciblés. Différences entre les systèmes canadien et américain Le système de santé canadien, particulièrement au Québec, est moins ciblé pour plusieurs raisons: Le contrôle gouvernemental offre une meilleure protection Les établissements disposent de moins de ressources financières pour payer des rançons Ils sont donc des cibles moins attrayantes pour les cybercriminels À l'inverse, aux États-Unis: Les hôpitaux fonctionnent comme des entreprises indépendantes Ils réalisent des profits importants mais opèrent avec des marges bénéficiaires minces Ils sont moins bien défendus et plus susceptibles de payer des rançons Les conséquences d'une cyberattaque pour un hôpital américain Une attaque par rançongiciel peut entraîner trois niveaux de conséquences: Perte de fonctionnalité pouvant durer plusieurs semaines, occasionnant des pertes financières de 150 à 200 millions de dollars Pénalités gouvernementales pour non-protection des données (5 à 100 millions de dollars) Recours collectifs pouvant coûter des centaines de millions supplémentaires Face à ces risques, payer une rançon de quelques millions devient souvent l'option la plus économique. Évolution des stratégies d'attaque Les cybercriminels sont passés du “single dipping” (simple demande de rançon) au “double dipping” et même au “triple dipping”: Double dipping: vol de données + chiffrement du système, avec menace de publier les données volées Triple dipping: vol, chiffrement ET modification des données médicales, avec menace de ne pas révéler quelles données ont été altérées La modification de données médicales est particulièrement dangereuse car elle peut affecter directement les soins aux patients et potentiellement mettre des vies en danger. La triade CIA en cybersécurité médicale La protection des données médicales repose sur trois piliers: Confidentialité: protection contre les fuites de données Intégrité: garantie que les données n'ont pas été modifiées Disponibilité: assurance de l'accès aux données quand nécessaire Le Dr. Desjardins cite plusieurs recherches inquiétantes, notamment: Des chercheurs israéliens ayant modifié des images radiologiques pour ajouter ou retirer des nodules pulmonaires, trompant 95% des radiologistes Des recherches montrant la possibilité d'inclure des malwares dans les en-têtes d'images médicales Des démonstrations d'interception et modification de données de laboratoire Ces atteintes à l'intégrité sont particulièrement sournoises car difficiles à détecter et potentiellement mortelles si elles mènent à des traitements inappropriés. Vulnérabilités des appareils médicaux connectés Les appareils médicaux connectés présentent des vulnérabilités spécifiques: Les pacemakers et pompes à insuline ont été prouvés comme étant piratables à distance Les appareils plus anciens n'ont pas été conçus avec la cybersécurité en considération Les contraintes de taille limitent l'ajout de mesures de sécurité robustes Mesures de protection et évolution des pratiques Face à ces menaces, plusieurs initiatives sont mises en place: Exigence d'un “Software Bill of Materials” (SBOM) par la FDA pour documenter tous les composants logiciels Implémentation de défenses multicouches suivant les standards NIST Compartimentalisation et segmentation des réseaux hospitaliers Protection renforcée des appareils médicaux par authentification et protocoles sécurisés Formation des employés contre le phishing, principale cause de brèches Le Dr. Desjardins souligne que le Québec est relativement bien protégé grâce à l'implication gouvernementale. Contrairement aux États-Unis, lorsqu'un hôpital québécois est attaqué, des équipes gouvernementales interviennent pour soutenir la défense. Collaborateurs Nicolas-Loïc Fortin Benoit Desjardins Crédits Montage par Intrasecure inc Locaux réels par Cybereco

Send us a textCybersecurity professionals need a solid understanding of secure communication protocols, not just for exam success but for real-world implementation. This episode unpacks the essential protocols covered in CISSP Domain 4.1.3, providing clear explanations of how each works and when to use them.We begin with a timely discussion of the recent UnitedHealthcare hack, examining how ransomware crippled Change Healthcare systems nationwide. This case study highlights the critical importance of understanding security protocols and being able to articulate potential business impacts to leadership. Sean shares practical approaches for estimating downtime costs to help justify security investments.The heart of this episode explores crucial security protocols including IPsec tunnels, Kerberos authentication, Secure Shell (SSH), and the Signal protocol. Each section covers how these technologies function, their ideal use cases, and their respective strengths and limitations. The discussion extends to transport layer security (TLS), layer 2 tunneling protocol (L2TP), and lesser-known protocols like secure real-time transport protocol (SRTP) and Zimmerman real-time transport protocol (ZRTP).Sean breaks down complex technical concepts into accessible explanations, perfect for both CISSP candidates and practicing security professionals. Understanding these protocols isn't just about passing an exam—it's about making informed decisions when implementing security architecture in your organization. Whether you're preparing for certification or looking to strengthen your organization's security posture, this episode provides valuable insights into the fundamental building blocks of secure communications.Check out cisspcybertraining.com for free resources including practice questions, training videos, and blog posts to support your cybersecurity learning journey.Gain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Send us a textSecurity regulations are changing dramatically in response to major breaches, and the implications for cybersecurity professionals are profound. Sean Gerber kicks off this episode with a career announcement, sharing his transition to independent consulting after 13 years with his previous employer—a move that highlights the evolving opportunities in the cybersecurity field.The heart of this episode examines the recent UnitedHealthcare breach, where attackers targeted Change Healthcare, a critical system processing 15 billion healthcare transactions annually. The February ransomware attack led to a $22 million ransom payment and disrupted approximately half of all pharmacy operations across the United States. This incident serves as a perfect case study in critical infrastructure vulnerability and has triggered a significant regulatory response from the Biden administration, which is now promising "tough, mandatory cybersecurity standards" for the healthcare industry.What does this mean for security professionals? Potentially stricter oversight, increased financial penalties, and perhaps most concerning—explicit executive liability for security failures. As Sean notes, these developments create an increasingly complex landscape where CISOs must navigate not just technical challenges but also regulatory expectations that might lack technical nuance.The episode transitions into a comprehensive examination of CISSP exam questions covering Domain 3.6, focusing on message integrity, digital signatures, and cryptographic hashing functions. Through fifteen detailed questions and answers, Sean breaks down essential concepts like the difference between checksums and hashing functions, the evolution from SHA-1 to more secure algorithms, and the role of certificate authorities in public key infrastructure. These technical foundations aren't just academic—they're the building blocks of systems that, when implemented correctly, prevent exactly the kind of breach that hit UnitedHealthcare.Ready to deepen your understanding of message integrity and prepare for the CISSP exam? Visit CISSP Cyber Training for videos, transcripts, and additional practice questions to help you master these critical concepts and advance your cybersecurity career.Gain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

This is a guest podcast from our good friends at the Health Association of Southern California. Our friend and longtime sponsor Gerry Blass speaks with Hospital Association of Southern California's (HASC) Adam Blackstone about governance, risk and compliance (GRC) in health care. With decades of experience in information technology, Blass shares how privacy and security risks have spiraled over time.

Cybersecurity remains a top concern for many healthcare organizations as attacks continue to increase. On today's Monday episode of the Gist Healthcare podcast, we hear the second part of host J. Carlisle Larsen's conversation with Christian Dameff, MD, emergency physician and Co-Director of the University of California-San Diego's Center for Healthcare Cybersecurity, about takeaways from last year's cyberattack on the Change Healthcare clearinghouse and how proposed federal legislation regarding healthcare cybersecurity could impact hospitals, especially in rural areas. You can listen to the first half of the conversation here. Hosted on Acast. See acast.com/privacy for more information.

The future of healthcare is evolving rapidly, and technology is playing a bigger role than ever. Pelu Tran shares insights on how AI, data-driven decision-making, and digital tools are reshaping patient care and the way doctors work. From improving clinical workflows to making healthcare more accessible, these innovations are changing the industry in real time. We also explore the challenges of integrating new technology, the balance between automation and human expertise, and what the next decade of healthcare could look like. How will these advancements impact both patients and medical professionals?

The healthcare industry remains the most targeted sector for cyberattacks in the United States. Last year had the dubious distinction of having the most patient records exposed in a year at more than 276 million. It also had the largest healthcare cyberattack on record, when UnitedHealth Group's Change Healthcare was hacked in February. Though we know that hospitals, vendors, and related organizations are particularly vulnerable to attacks, it's been difficult to fully secure them. Christian Dameff, MD, emergency physician and Co-Director of the University of California-San Diego's Center for Healthcare Cybersecurity, joins host J. Carlisle Larsen to talk more about challenges facing the industry and some common misconceptions about the motivations behind these attacks. This is a two-part episode. The second half of their conversation will air on Monday, April 7. Hosted on Acast. See acast.com/privacy for more information.

Security expectations for health tech vendors are rising significantly in the wake of last year's Change Healthcare cyberattack. Hal Porter, Director of Consulting Services, Clearwater, speaks with Alexis Finkelberg Bortniker, Partner, Cooley LLP, about how the climate has changed for health tech vendors. They discuss changing contractual security requirements for vendors, key areas where potential vendors are being more vigorously evaluated, managing risk involving AI tools for vendor management, fundamentals of a strong Incident Response Plan, how vendors should respond to the changing regulatory environment, and security recommendations for technology companies and others selling products and services to health care providers. Sponsored by Clearwater. AHLA's Health Law Daily Podcast Is Here! AHLA's popular Health Law Daily email newsletter is now a daily podcast, exclusively for AHLA Premium members. Get all your health law news from the major media outlets on this new podcast! To subscribe and add this private podcast feed to your podcast app, go to americanhealthlaw.org/dailypodcast.

What burning questions do RedSail customers have about the future of pharmacy?  In this special episode of Beyond the Scripts, we put Josh Howland in the hot seat to discuss the industry's most pressing issues. Josh talks about the evolution of PioneerRx, RedSail's multi-PMS strategy, and the benefits of the PowerLine switch. He also explains how RedSail plans to help pharmacies stay profitable, even amid the rise of expensive medications like GLP-1s, and his cautious approach to integrating AI into pharmacy technology. Outside of the software, Josh dives into industry-specific challenges, like transparent pricing, manufacturer voucher programs, and the cybersecurity challenges following the Change Healthcare attack. With this conversation, Josh cuts through the industry noise and offers answers to all the questions you've been asking. 00:00 - Introduction and Josh's journey at PioneerRx 06:48 - Impact of RedSail's acquisition on PioneerRx 17:01 - RedSail Technologies portfolio expansion  21:34 - Integrating independent pharmacies under one technology network  30:36 - Communication and company growth challenges  33:36 - The PowerLine switch benefits and security  43:27 - Fee structure changes and pricing model  49:26 - Manufacturer voucher programs and claim issues 01:00:02 - Development priorities and AI's future role  Hosted By: Will Tuft | Director of Pharmacy Education & Engagement, PioneerRx Guest: Josh Howland | President of Pharmacy Management Solutions, RedSail Technologies  Looking for more information about independent pharmacy? Visit www.pioneerrx.com  

According to Kroll's cyber risk team, healthcare leads as the most breached industry in 2024 at 23% of all incidents, with medical data valued up to $1,000 on dark markets compared to just $5 for credit card information. Drex provides updates on the Change Healthcare breach one year later, noting that notifications are still ongoing for the incident that affected nearly half of all Americans. The episode concludes with a spotlight on "Have I Been Pwned," a valuable resource for checking if your email has been compromised in data breaches, which now tracks nearly a thousand separate breach incidents.Remember, Stay a Little Paranoid Subscribe: This Week Health Twitter: This Week Health LinkedIn: This Week Health Donate: Alex's Lemonade Stand: Foundation for Childhood Cancer

In this interview, we're excited to have Ilona Cohen to help us understand what changes this new US administration might bring, in terms of cybersecurity regulation. Ilona's insights come partially from her own experiences working from within the White House. Before she was the Chief Legal Officer of HackerOne, she was a senior lawyer to President Obama and served as General Counsel of the White House Office of Management and Budget (OMB). In this hyper-partisan environment, it's easy to get hung up on particular events. Do many of us lack cross-administration historical perspective? Probably. Should we be outraged by the disillusion of the CSRB, or was this a fairly ordinary occurrence when a new administration comes in? These are the kinds of questions I'll be posing to Ilona in this conversation. How the Change Healthcare breach can prompt real cybersecurity change 'Shift Left' feels like a cliché at this point, but it's often difficult to track tech and security movements if you aren't interacting with practitioners on a regular basis. Some areas of tech have a longer tail when it comes to late adopters and laggards, and application security appears to be one of these areas. In this interview, Jenn Gile catches us up on AppSec trends. Segment Resources: Microsoft Defender for Cloud Natively Integrates with Endor Labs 2024 Dependency Management Report How to pick the right SAST tool In the enterprise security news, Change Healthcare's HIPAA fine is vanishingly small How worried should we be about the threat of AI models? What about the threat of DeepSeek? And the threat of employees entering sensitive data into GenAI prompts? The myth of trillion-dollar cybercrime losses are alive and well! Kagi Privacy Pass gives you the best of both worlds: high quality web searches AND privacy/anonymity Thanks to the UK for letting everyone know about end-to-end encryption for iCloud! What is the most UNHINGED thing you've ever seen a security team push on employees? All that and more, on this episode of Enterprise Security Weekly. Visit https://www.securityweekly.com/esw for all the latest episodes! Show Notes: https://securityweekly.com/esw-395

In this interview, we're excited to have Ilona Cohen to help us understand what changes this new US administration might bring, in terms of cybersecurity regulation. Ilona's insights come partially from her own experiences working from within the White House. Before she was the Chief Legal Officer of HackerOne, she was a senior lawyer to President Obama and served as General Counsel of the White House Office of Management and Budget (OMB). In this hyper-partisan environment, it's easy to get hung up on particular events. Do many of us lack cross-administration historical perspective? Probably. Should we be outraged by the disillusion of the CSRB, or was this a fairly ordinary occurrence when a new administration comes in? These are the kinds of questions I'll be posing to Ilona in this conversation. How the Change Healthcare breach can prompt real cybersecurity change 'Shift Left' feels like a cliché at this point, but it's often difficult to track tech and security movements if you aren't interacting with practitioners on a regular basis. Some areas of tech have a longer tail when it comes to late adopters and laggards, and application security appears to be one of these areas. In this interview, Jenn Gile catches us up on AppSec trends. Segment Resources: Microsoft Defender for Cloud Natively Integrates with Endor Labs 2024 Dependency Management Report How to pick the right SAST tool In the enterprise security news, Change Healthcare's HIPAA fine is vanishingly small How worried should we be about the threat of AI models? What about the threat of DeepSeek? And the threat of employees entering sensitive data into GenAI prompts? The myth of trillion-dollar cybercrime losses are alive and well! Kagi Privacy Pass gives you the best of both worlds: high quality web searches AND privacy/anonymity Thanks to the UK for letting everyone know about end-to-end encryption for iCloud! What is the most UNHINGED thing you've ever seen a security team push on employees? All that and more, on this episode of Enterprise Security Weekly. Visit https://www.securityweekly.com/esw for all the latest episodes! Show Notes: https://securityweekly.com/esw-395

In the enterprise security news, Change Healthcare's HIPAA fine is vanishingly small How worried should we be about the threat of AI models? What about the threat of DeepSeek? And the threat of employees entering sensitive data into GenAI prompts? The myth of trillion-dollar cybercrime losses are alive and well! Kagi Privacy Pass gives you the best of both worlds: high quality web searches AND privacy/anonymity Thanks to the UK for letting everyone know about end-to-end encryption for iCloud! What is the most UNHINGED thing you've ever seen a security team push on employees? All that and more, on this episode of Enterprise Security Weekly. Show Notes: https://securityweekly.com/esw-395

In the enterprise security news, Change Healthcare's HIPAA fine is vanishingly small How worried should we be about the threat of AI models? What about the threat of DeepSeek? And the threat of employees entering sensitive data into GenAI prompts? The myth of trillion-dollar cybercrime losses are alive and well! Kagi Privacy Pass gives you the best of both worlds: high quality web searches AND privacy/anonymity Thanks to the UK for letting everyone know about end-to-end encryption for iCloud! What is the most UNHINGED thing you've ever seen a security team push on employees? All that and more, on this episode of Enterprise Security Weekly. Show Notes: https://securityweekly.com/esw-395

In this interview, we're excited to have Ilona Cohen to help us understand what changes this new US administration might bring, in terms of cybersecurity regulation. Ilona's insights come partially from her own experiences working from within the White House. Before she was the Chief Legal Officer of HackerOne, she was a senior lawyer to President Obama and served as General Counsel of the White House Office of Management and Budget (OMB). In this hyper-partisan environment, it's easy to get hung up on particular events. Do many of us lack cross-administration historical perspective? Probably. Should we be outraged by the disillusion of the CSRB, or was this a fairly ordinary occurrence when a new administration comes in? These are the kinds of questions I'll be posing to Ilona in this conversation. How the Change Healthcare breach can prompt real cybersecurity change Show Notes: https://securityweekly.com/esw-395

In this interview, we're excited to have Ilona Cohen to help us understand what changes this new US administration might bring, in terms of cybersecurity regulation. Ilona's insights come partially from her own experiences working from within the White House. Before she was the Chief Legal Officer of HackerOne, she was a senior lawyer to President Obama and served as General Counsel of the White House Office of Management and Budget (OMB). In this hyper-partisan environment, it's easy to get hung up on particular events. Do many of us lack cross-administration historical perspective? Probably. Should we be outraged by the disillusion of the CSRB, or was this a fairly ordinary occurrence when a new administration comes in? These are the kinds of questions I'll be posing to Ilona in this conversation. How the Change Healthcare breach can prompt real cybersecurity change Show Notes: https://securityweekly.com/esw-395

Welcome solo and group practice owners! We are Liath Dalton and Evan Dumas, your co-hosts of Group Practice Tech. In our latest episode, we break down some important action items for group practice owners as a result of last year's Change Healthcare breach. We discuss: What happened with Change Healthcare What a ransomware attack is and how the hackers gained access Foundational security awareness training, and creating an overall security culture in your practice How to improve training for your workforce Having the right security configurations in place in your systems The importance of risk analysis and risk mitigation planning Codifying everything into comprehensive security policies and procedures Listen here: https://personcenteredtech.com/group/podcast/ For more, visit our website.

It was understandable that much of the discussion in 2024 focused on how and where healthcare was falling short on cybersecurity. In general, healthcare had not prioritized or invested in cybersecurity compared to other regulated critical industries like banking and transportation. Healthcare IT Today thought it would be interesting to flip the script on cybersecurity in healthcare. Instead of focusing on where we needed to improve, we wanted to hear where we were doing well. We reconnected with Steve Cagle, CEO at Clearwater, the largest pure-play provider of cybersecurity and compliance solutions for the healthcare industry. We spoke to Cagle at ViVE2024 about the Change Healthcare incident, so it was fitting we spoke to him at the end of 2024. Here his response to the question – What is healthcare doing well when it comes to cybersecurity?Learn more about Clearwater athttps://clearwatersecurity.com/Find more great health IT content athttps://www.healthcareittoday.com/

Don't trash it! Hackers stole medical records and personal info in a Change Healthcare breach. Here's what to do.

S1E3: Kel Pults, chief clinical officer and VP of Government Strategy, MediQuant On this episode host Tom Testa sat down with Kel Pults, chief clinical officer and VP of Government Strategy for MediQuant for a discussion on the impacts of new healthcare legislation set to shape 2025 as well as how organizations are addressing the security of vulnerable patient data as we look back at lessons learned from the February 2024 Change Healthcare cyber attack. To stream our Station live 24/7 visit www.HealthcareNOWRadio.com or ask your Smart Device to “….Play Healthcare NOW Radio”. Find all of our network podcasts on your favorite podcast platforms and be sure to subscribe and like us. Learn more at www.healthcarenowradio.com/listen

Have you heard the latest on the Change Healthcare hack? Checklist 409's got it. Plus - a lot of Apple operating systems got updates this week. Most of those got a fix for a vulnerability under active exploit - but what about the ones that didn't? We'll look into that on this edition of The Checklist, brought to you by SecureMac. Check out our show notes: SecureMac.com/Checklist And get in touch with us: Checklist@Securemac.com

UnitedHealth Group reveals that the number of Americans impacted by last year's Change Healthcare breach has nearly doubled. The University of Minnesota and Essentia Health announce a plan to form a new nonprofit healthcare entity. And, Walgreens rumored sale of itself to a private equity firm is reportedly called off. We'll get those stories—and more—coming up on today's episode of the Gist Healthcare podcast. Hosted on Acast. See acast.com/privacy for more information.

00:00 - PreShow Banter™ — Fake Australian04:17 - BHIS - Talkin' Bout [infosec] News 2025-01-2704:34 - Story # 1: DeepSeek sparks AI stock selloff; Nvidia posts record market-cap loss30:50 - Story # 2: Tech giants are putting $500bn into ‘Stargate' to build up AI in US42:23 - Story # 3: DeepSeek Faces Large-scale Cyberattack, Halts New User Registrations43:34 - Story # 4: DHS cyber review board cleaned out in Trump move to eliminate ‘misuse of resources'47:38 - Story # 5: UnitedHealth estimates 190M people impacted by Change Healthcare cyberattack50:02 - Story # 5b: UnitedHealth now says 190 million impacted by 2024 data breach53:09 - Story # 6: Cloudflare Issue Can Leak Chat App Users' Broad Location54:09 - Story # 7: Hacking Subaru: Tracking and Controlling Cars via the STARLINK Admin Panel59:40 - Story # 8: Researchers say new attack could take down the European power grid

Data Privacy, Security, and Tech Trends in Early 2025 1. What was the scale of healthcare data breaches in the U.S. during 2024? In 2024, the U.S. healthcare sector experienced a massive surge in cyberattacks, with approximately 720 reported breaches compromising an estimated 186 million user records. This exposed a vast amount of sensitive information, including names, contact details, Social Security numbers, and medical histories. This is approximately 56% of the US population. 2. How did UnitedHealth handle its data breach notification, and what are the implications for affected individuals? UnitedHealth, specifically its subsidiary Change Healthcare, attempted to obscure its data breach notification webpage from search engines, making it difficult for the over 100 million affected individuals to learn about the incident. They used a “noindex” tag to keep it out of Google, burying the story of their breach. This led to widespread confusion and further distrust of the company. It also highlights how companies can use search engine optimization to hide breaches by burying the real stories. 3. What is GeoSpy, and what privacy concerns does it raise? GeoSpy is an AI tool that can accurately predict the location of photos based on features within the images, such as vegetation, architecture, and spatial relationships. Originally available to the public, it's now marketed to law enforcement and government agencies. This technology raises serious privacy concerns, as it can be used by stalkers or other malicious actors to geolocate individuals from publicly available photos. The tool is now available to law enforcement and enterprise users, and some versions of it are more powerful than what was offered to the public. 4. What restrictions were placed on General Motors (GM) regarding the sale of driving data? The Federal Trade Commission (FTC) banned GM and its subsidiary OnStar from selling customer geolocation and driving behavior data for five years. This action followed an investigation that revealed GM had been collecting and selling detailed driving information to insurance companies without obtaining explicit consent from vehicle owners. 5. What is the UK's new digital wallet app, and what types of documents will it support? The UK is launching a digital wallet app called GOV.UK Wallet, allowing citizens to store government-issued documents on their smartphones. Initially supporting veteran cards, it will expand to include driver's licenses in late 2025, with plans to add passports, marriage certificates, and benefit documents by 2027. 6. What security risks are associated with failed startups and "Sign in with Google" features? Former employees of failed startups using "Sign in with Google" features are vulnerable to data breaches. Hackers can exploit abandoned company domains and the associated Google login systems to access sensitive information stored in business software like Slack, Notion, and HR systems, including social security numbers. This vulnerability is particularly relevant to startups that used the ""Sign in with Google"" function. 7. What challenges did Amazon employees face following the mandatory return-to-office policy? Amazon's mandate for a full return to the office resulted in significant challenges for employees, including a shortage of desks and meeting rooms, overcrowded parking facilities, and an increase in workplace thefts. The policy has also been criticized for forcing employees into video calls that could have been easily conducted remotely, and some employees reported that there is a lack of trust amongst colleagues. 8. What are the $TRUMP and $MELANIA coins, and what controversies are surrounding them? Donald and Melania Trump introduced meme coins named $TRUMP and $MELANIA on the Solana blockchain. These coins quickly gained significant value, raising concerns about potential conflicts of interest and market manipulation.

In this episode of The Lawyers Weekly Show, brought to you by our sister brand, Cyber Daily, we look back at some of the most notable cyber incidents from the past 12 months and look ahead to what can be expected in the new year. Hosts David Hollingworth and Daniel Croft discuss CrowdStrike's outage and amazing response to the takedown of ransomware giant LockBit, reflect on the Change Healthcare hack, which saw the data of about a third of the population of the United States compromised, the behind-the-scenes maneuvering between greedy ransomware-as-a-service operators, hacker affiliates just wanting to get paid, and a company realising that it really does have to pay an exorbitant ransom. The pair also discuss the takedown of ransomware giant LockBit and the remarkably sassy response of the law enforcement agencies behind the operation, look back at another ransomware operation that turned out to be nothing but an extensive scam, and reflect on July's CrowdStrike outage, both its wide-ranging impact and what turned out to be an excellent and comprehensive response from CrowdStrike itself, before turning the gaze forward to wonder what they might see in 2025. If you like this episode, show your support by  rating us or leaving a review on Apple Podcasts (The Lawyers Weekly Show) and by following Lawyers Weekly on social media: Facebook, Twitter and LinkedIn. If you have any questions about what you heard today, any topics of interest you have in mind, or if you'd like to lend your voice to the show, email editor@lawyersweekly.com.au for more insights!

In this episode, Shrav Mehta, Founder, and CEO at Secureframe, joins me to discuss major cybersecurity incidents in 2024, highlighting five significant breaches: National Public Data (2.7 billion records), AT&T (50 billion), Ticketmaster (500 million), Change Healthcare (145 million), and Dell (49 million). We emphasize the importance of proactive measures, such as data minimization, continuous training, and zero-trust models. I stressed the need for leadership engagement, robust incident response plans, and a holistic approach to security. Shrav underscores the role of automation and continuous monitoring in enhancing protection. We both agreed on the necessity of evolving security practices to counter emerging threats like deepfakes and AI-enabled attacks.To access and download the entire podcast summary with discussion highlights -- https://www.dchatte.com/episode-78-lessons-from-2024s-biggest-cyber-incidents-and-building-stronger-defenses-for-2025/Latest Articles and Press Release on The Cybersecurity Readiness Podcast Series:Dr. Dave Chatterjee Hosts Global Podcast Series on Cyber Readiness, Yahoo!Finance, Dec 16, 2024Dr. Dave Chatterjee Hosts Global Podcast Series on Cyber Readiness, Marketers Media, Dec 12, 2024.Cybersecurity Readiness Podcast by Dr. Dave Chatterjee Reaches 10,000 Downloads Globally, Business Insider/Markets Insider, Dec 10, 2024.Connect with Host Dr. Dave Chatterjee and Subscribe to the PodcastPlease subscribe to the podcast so you don't miss any new episodes! And please leave the show a rating if you like what you hear. New episodes are released every two weeks. Connect with Dr. Chatterjee on these platforms: LinkedIn: https://www.linkedin.com/in/dchatte/ Website: https://dchatte.com/Cybersecurity Readiness Book: https://www.amazon.com/Cybersecurity-Readiness-Holistic-High-Performance-Approach/dp/1071837338https://us.sagepub.com/en-us/nam/cybersecurity-readiness/book275712Latest Publications & Press Releases:Ignorance is not bliss: A human-centered whole-of-enterprise approach to cybersecurity preparedness"Getting Cybersecurity Right,” California Management Review — Insights, July 8, 2024.

Title: How to Build Resilience: Future-Proofing Cybersecurity in Healthcare. In this episode of FINN Voices, host Beth Friedman speaks with Greg Surla, Senior Vice President and Chief Information Security Officer at FinThrive, a leader in revenue cycle management solutions. Greg discusses key insights from the Change Healthcare cybersecurity breach and the importance of rigorous backup systems to ensure operational continuity for revenue cycle operations during cyber incidents. Listeners assess a comprehensive game plan for outage management and data integrity assurance while promoting a culture of security awareness across their organizations. Join us to learn how FinThrive helps healthcare organizations tackle cybersecurity challenges and strengthen their resilience in revenue cycle management. Find all of our network podcasts on your favorite podcast platforms and be sure to subscribe and like us. Learn more at www.healthcarenowradio.com/listen/

Welcome to RIMScast. Your host is Justin Smulison, Business Content Manager at RIMS, the Risk and Insurance Management Society.   In this episode, Justin interviews Morgan O'Rourke and Hilary Tuttle of RIMS Risk Management Magazine for the Q4 Edition Risk Year in Review. They discuss the biggest risk events we've seen in 2024, including natural disasters following climate change and even the recent murder of the UHC CEO. They give their forecasts for 2025, with cybersecurity being an expanding area of risk, combined with AI, and regulatory changes likely under the new administration.   Listen for categories of risk your organization is sure to face in the coming year. Key Takeaways: [:01] About RIMS. [:14] Public registration is open for RISKWORLD 2025! RIMS wants you to engage today and embrace tomorrow in Chicago from May 4th through May 7th! Register at RIMS.org/RISKWORLD and the link in this episode's notes. [:30] About this episode, coming to you from RIMS headquarters in New York. This episode is our special 2024 finale! Hilary Tuttle and Morgan O'Rourke of RIMS Risk Management Magazine will join us to discuss the top trends and stories from 2024 and what to expect in 2025. [:58] RIMS-CRMP Virtual Workshops On February 19th and 20th, there is a two-day virtual workshop for the RIMS-CRMP led by former RIMS President Chris Mandel and presented by the RIMS Greater Bluegrass Chapter, the 2024 RIMS Chapter of the Year. [1:20] The next RIMS-CRMP-FED Exam Course will be held from February 4th through the 6th, 2025. Links to these courses can be found on the Certification page of RIMS.org and through this episode's show notes. [1:36] RIMS Virtual Workshops! Gail Kiyomura of The ART of Risk Consulting will host the “Fundamentals of Insurance” virtual workshop on February 19th and 20th, 2025. [1:50] We've got ERM on our minds. On February 26th and 27th, Elise Farnham of Illumine Consulting will lead “Applying and Integrating ERM”. The “Managing Data for ERM” course will be hosted by Pat Saporito, starting on March 12th, 2025. [2:12] A link to the full schedule of virtual workshops can be found through the RIMS.org/education/online-learning pages. A link is also in this episode's show notes. [2:25] Interview! The Q4 edition of RIMS Risk Management Magazine is my favorite of the year! It is The Year in Risk edition. We'll have a chance to revisit all the risk highlights from 2024. [2:42] Here to discuss what made the cut and trends we need to look out for in 2025 are RIMS Director of Publications and Risk Management Magazine Editor in Chief, Morgan O'Rourke and Risk Management Magazine Managing Editor, Hilary Tuttle. [3:01] There is so much to discuss from cyber security to executive safety. As a show of appreciation to the RIMScast audience and subscribers worldwide, we've got so much great content in one huge episode, as opposed to spreading it out over two episodes. [3:18] You don't have to wait, it's all here for you at once! Let's get to it! [3:30] Morgan O'Rourke and Hilary Tuttle, Welcome back to RIMScast! [3:39] Morgan and Hilary are here to discuss The Year in Risk, which is the title of the Q4 edition of RIMS Risk Management Magazine. How does 2024 stand out from other years? [4:04] Morgan starts looking back at the year's events in October. He recalls the bridge collapse in Baltimore in March. There are always going to be hurricanes and natural disasters. There are always going to be cyber attacks. It's just a matter of what flavor they are this year. [5:15] Morgan categorizes big risk events. There are accidents, like the bridge in Baltimore that affect shipping, and natural disasters, including storms, earthquakes, and record heat. 2024 is the hottest year on record, with the hottest day in recorded history, July 22. [6:38] The AXA Future Risks Report lists climate change as the number one risk. Climate change brings natural disasters to places that don't normally see them, like wildfires in the Northeast. [7:55] Hilary says there were a few hundred fires in New York City this year. The NYFD had to put together its first brush fire task force. In the first two weeks of November, they had 271 fires. Canada has had a terrible year for fires, continuing from its 2023 fire season. [9:25] Climate change puts everybody at risk. The risk landscape expands so that everybody's in the game. Paraphrasing Flannery O'Connor, Hilary says 2024 was a disaster in truth everywhere. Disasters are not new but they are occurring in different places and times than before. [10:22] There were 11,000 fires in the Northeast this year, largely in October and November. It's a different season and in a different region. The traditional risk models are thrown out the window. [10:49] Morgan comments that this year we saw the earliest category 5 hurricane formed: Beryl in June. We're starting to throw out more of the parameters for when you need to be prepared for something. [11:21] We are seeing more geopolitical conflict, supply chain issues, and risks that didn't seem impactful in regions that seemed stable and reliable. Thirty percent of shipping goes through the Red Sea. Shipping is 90% of the supply chain. [11:55] Hilary says in the last year and a half, shipping through the Red Sea has become an untenable and sometimes uninsurable risk. Our standard expectations for doing business are going out the window or being upended. This has become more of a problem this year. [12:42] There are risks we itemize as the things that are causing problems. Then there are bigger-picture risks you don't necessarily identify when you're thinking about your problems. [13:01] You're thinking about supply chain disruption and natural catastrophes and business interruption, but not about the climate change that may cause them. [13:42] Morgan says people have to focus on the problem that's in front of them. You have to deal with the acute issues before you can deal with the systematic ones. It's hard to solve systematic problems. [14:28] Morgan sees polycrisis as interconnected risks. Hilary sees the word as an easy way to allude to something that has been happening for a long time. She can't think of a time in which you truly faced only one risk without having to think of multiple interconnected risks. [17:35] Morgan edited the new RIMS Executive Report, “Understanding Interconnected Risks” authored by RIMS Strategic and Enterprise Risk Management Council members Michael Zuraw and Tom Easthope. [17:48] The paper is available only for members until February 12th, 2025. Then it will be publicly accessible. [18:16] Morgan says the key for the paper is in its practicality about how you should go about prioritizing risks and understanding where they connect within your operations to communicate with departments and executives and implement risk mitigation. It's actionable. [19:30] Morgan considers that the value of RIMS membership and Risk Management Magazine is in learning what to do about risks. [20:02] Hillary objects to the term polycrisis. It over-intellectualizes a problem to the detriment of focusing on how to solve it or what to do about it. [20:58] Plug Time! RIMS Webinars! Hub International continues its Ready for Tomorrow Series with RIMS. On February 20th, they will host “Ready for the Unexpected? Strategies for Property Valuation, Disaster Recovery and Business Continuity in 2025”. [21:23] More webinars will be announced soon and added to the RIMS.org/webinars page. Go there to register. Registration is complimentary for RIMS members. [21:34] RIMS is now accepting nominations for all awards other than Risk Manager of the Year 2025. The submission deadline is Monday, January 6th, 2025. To receive a RIMS award, all winners must be active members and in good standing. [21:54] These awards are the Diversity, Equity, and Inclusion Chapter Leadership Award, the Harry and Dorothy Goodell Award, the Volunteer of the Year “Heart of RIMS” Award, the Richard W. Bland Memorial Award, the Chapter of the Year Award, the Rising Risk Professional Award, the Risk Management Hall of Fame, and the Cristy Award. [22:32] You can find more information about the awards through the About Us page of RIMS.org or the link in this interview's show notes. [22:40] Nominations are also open for the Donald M. Stuart Award which recognizes excellence in risk management in Canada. Links are in this episode's show notes. [22:51] Back to our Year in Risk Interview with Morgan O'Rourke and Hilary Tuttle of RIMS Risk Management Magazine!  [23:16] Justin brings up the recent shooting and killing of the UHC CEO. Morgan was at the same hotel but didn't hear about it until he had walked to the office. [23:46] If RIMS Risk Management Magazine had been a print publication, this event would not have been included. Being a digital publication, Risk Management Magazine was able to cover it. [23:59] Hilary starts with executive safety and employee safety. She speaks of reputation risk and monitoring social media discussion. For most who commented on social media, this murder was no surprise. UHC had a tremendous failure of reputation risk and public listening. [25:28] Hilary was saddened but not surprised by the incident. She calls privatized health insurance in the United States a horror show. You can't let cashing those executive incentive checks blind you to public response. [26:27] Morgan says it's amazing to see that public sentiment was decidedly unsympathetic, but it's not unexpected. Hilary mentions the rates of medical debt in the U.S. Hilary saw an outpouring of approval of the murder, which is an awful response to have. [27:15] If you're in a position where that is the public sentiment around your organization, you need to fire your PR firm and think very seriously, not only about how you're conducting business but about how you're communicating with the public. That is a huge reputation failure. [27:47] Some health insurance companies have trimmed down or removed their executive team pages to make them less identifiable in public. It's a safety issue. You want to be very careful about how much you post about individual people. [28:43] From a cyber security perspective, nothing you put on the internet is private or innocuous. If you are an insurance executive who likes to go hiking at Mount Whatever, maybe that's not information you want to put on the internet.  [29:31] Hilary sees this situation as reminiscent of Big Tobacco as an industry. She believes there is an awareness that there is a certain amount of evil being done among executives in this industry. She says perhaps there is a social reckoning to be had in that. [30:06] Plug for The Spencer Educational Foundation! Spencer's goal to help build a talent pipeline of risk management and insurance professionals is achieved in part by its collaboration with risk management and insurance educators across the U.S. and Canada. [30:24] Since 2010, Spencer has awarded over $3.3 million in general grants to support over 130 student-centered experiential learning initiatives at universities and RMI non-profits. Spencer's 2026 application process will open on May 1st, 2025, and close on July 30th, 2025. [30:48] General grant awardees are typically notified at the end of October. Learn more about Spencer's general grants through the programs tab of SpencerEd.org. [30:59] Let's Return to the Conclusion of my Interview with RIMS Risk Management Magazine's Morgan O'Rourke and Hilary Tuttle!  [31:11] Justin asks about AI and cyber security in 2025. The Cybersecurity and Infrastructure Security Agency (CISA) has noted that there will be an increase in breaches and the creativity of attacks. [31:38] They have a revised Revised National Cyber Incident Response Plan that is available for public comment. Hilary agrees that there will be more AI embedded in cyber attacks in 2025. It is already being used to power attacks and in the detection of attacks. [32:01] AI is also being used effectively in different forms of exploiting humans with ChatGPT and better phishing emails. It is being used to write better malware that is harder to detect. [32:25] Moody's Outlook expects a significant intensification of cyber risk in 2025, from the number of cyber incidents that are occurring and the sophistication and impact of cyber risk. Companies are getting better at detecting cyber attacks and doing basic cyber security. [33:19] Cyber criminals are getting better, too. The attacks will be harder to detect or more severe in scope. Hilary calls social engineering an interesting art. Like journalism, you have to find the approach that successfully gets the information you are looking for out of humans. [34:38] Morgan describes an old social engineering attack with a recording of a baby crying in the background, and a “harried mom” trying to get into an account without her password, trying to craft a persuasive argument. Gen AI might do all this in one step and be relatively successful. [36:01] Hilary mentions that at the DEF CON hacker's conference, there is a social engineering village. Their “Capture the Flag” is a contest to do just what Morgan described. There are bulleted lists of the types of information you are trying to get in an allotted time. [37:02] Morgan says it's not like the fast-typing hackers seen in the movies. You get the information through conversation. [38:05] Hilary says one of the downsides of automation is the tremendous proliferation in the number of attacks that are being launched. Ransomware attacks grew 70% last year and are on track to double their 2022 levels by the end of 2024. [38:29] Moody's and QB Canada both came out with reports anticipating 5,200 ransomware attacks around the world in 2025, from 2,500 in 2022. It's easier to launch attacks at scale against multiple organizations at once. The attacks are more sophisticated and damaging. [39:01] The ransomware attacks are asking for significantly more money. Fewer companies are paying ransoms because they have backups and plans in place. Average ransomware payments are going up. Last year, ransomware payments passed $1.1 billion for the first time. [39:26] The companies that pay ransom are feeling more compelled and are in a tougher spot so they are paying larger ransoms. [39:48] Morgan points out that paying the ransom doesn't solve the problem. Change Healthcare had the largest healthcare data breach in U.S. history. They paid $22 million in ransom but didn't get the data back. Some attackers will keep extorting you or just take your money and run. [40:36] The FBI has said don't pay ransomware. You can't trust criminals. [40:43] Hilary mentions three ransomware threats: holding a network captive, holding data captive, and holding sensitive information captive. This is triple extortion. If you are the victim of a ransomware attack, go in with the expectation that that is the situation. [41:55] Hilary forecasts that 2025 will be a colorful year. There is a tremendous amount of uncertainty in pretty much everything. It will be an interesting year, politically. It will be a very interesting four years, from a regulatory perspective. [42:22] In terms of severe weather, disasters, and cyber, it feels like there will be more, and more, and more events. [42:51] Morgan thinks the biggest thing is the change in administration and the priorities. ESG has been downscaled. A lot of companies are moving off of DEI initiatives, based on the shift in administration and the feeling that DEI will not be as popular. [43:16] The regulations concerning a lot of ESG may no longer be in play. The federal guidelines are not going to be what they were in any aspect. [43:39] President Biden in 2023 issued an Executive Order with guidelines and restrictions on AI. Donald Trump has said he'll probably rescind that. Donald Trump seems to be aligned with a lot of the tech companies for less regulation of AI. Fingers crossed it doesn't make things worse! [44:33] Hilary knows several organizations are particularly concerned about some of the potential risk impacts of taking away many of the consumer protections and other regulations that do a tremendous amount to curb risk. That could increase the risk landscape for many. [44:55] CISA has cautioned that this could have a disastrous impact on cyber security. A lot of regulations that keep organizations safer are potentially on the chopping block under the new administration. Hilary thinks that's probably true in some other industries. It will get risky. [45:30] It has been a pleasure to see you both! I appreciate your time. The RIMS Risk Management Magazine Year in Review is now available at RMMagazine.com. Quick Plug! We're looking for submissions from the risk profession. See the contribution guidelines. [46:01] Reach out to Hilary and Morgan. Especially if you're a risk professional, we want to hear your ideas. Morgan says we're only as strong as our contributors in the risk management community. Give us what you've got! [46:21] Special thanks again, as always, to Morgan O'Rourke and Hilary Tuttle of RIMS Risk Management Magazine for joining us here on RIMScast! The Risk Management Year in Review Edition is now live at RMMagazine.com. A link is in this episode's show notes. [46:41] We look forward to checking back with Morgan and Hilary for the mid-year update in 2025. [46:48] More RIMS Plugs! You can sponsor a RIMScast episode for this, our weekly show, or a dedicated episode. Links to sponsored episodes are in our show notes. RIMScast has a global audience of risk and insurance professionals, legal professionals, students, business leaders, C-Suite executives, and more. Let's collaborate and help you reach them! Contact pd@rims.org for more information. [47:35] Become a RIMS member and get access to the tools, thought leadership, and network you need to succeed. Visit RIMS.org/membership or email membershipdept@RIMS.org for more information. [47:52] Risk Knowledge is the RIMS searchable content library that provides relevant information for today's risk professionals. Materials include RIMS executive reports, survey findings, contributed articles, industry research, benchmarking data, and more. [48:09] For the best reporting on the profession of risk management, read Risk Management Magazine at RMMagazine.com. It is written and published by the best minds in risk management. [48:23] Justin Smulison is the Business Content Manager at RIMS. You can email Justin at Content@RIMS.org. [48:30] Thank you all for your continued support and engagement on social media channels! We appreciate all your kind words. Listen every week! Stay safe!   Mentioned in this Episode: RIMS Risk Management Magazine RIMS DEI CouncilNominations open for RIMS 2025 Awards! (Through Jan. 6, 2025) Nominations for the Donald M. Stuart Award Spencer Educational Foundation — General Grants 2026 — Application Dates Contribute to RIMS Risk Management Magazine / Submission Guidelines “RIMS Executive Report: Understanding Interconnected Risks” RIMS-Certified Risk Management Professional (RIMS-CRMP) RIMS Webinars: RIMS.org/Webinars “Ready for the Unexpected? Strategies for Property Valuation, Disaster Recovery and Business Continuity in 2025” | Sponsored by Hub International | Feb. 20, 2025 Upcoming Virtual Workshops: “Stay Competitive with the RIMS-CRMP” | Presented by the RIMS Greater Bluegrass Chapter February 19‒20, 2025 | Instructor: Chris Mandel “Applying and Integrating ERM” | Feb. 26‒27 “Managing Data for ERM” | March 12, 2025 “Fundamentals of Insurance” | Feb. 19‒20, 2025 See the full calendar of RIMS Virtual Workshops RIMS-CRMP Prep Workshops   Related RIMScast Episodes: “Big Shifts with John Hagel, RIMS ERM Conference Keynote” “2024 Mid-Year Risk Update with Morgan O'Rourke and Hilary Tuttle” “2023 Risk Year In Review with Morgan O'Rourke and Hilary Tuttle” “Live from the ERM Conference 2024 in Boston!”“Maintaining an Award-Winning ERM Program with Michael Zuraw” “Applying ERM Theory with Elise Farnham” “On Risk Appetite and Tolerance”   Sponsored RIMScast Episodes: “Simplifying the Challenges of OSHA Recordkeeping” | Sponsored by Medcor (New!) “Risk Management in a Changing World: A Deep Dive into AXA's 2024 Future Risks Report” | Sponsored by AXA XL “How Insurance Builds Resilience Against An Active Assailant Attack” | Sponsored by Merrill Herzog “Third-Party and Cyber Risk Management Tips” | Sponsored by Alliant “RMIS Innovation with Archer” | Sponsored by Archer “Navigating Commercial Property Risks with Captives” | Sponsored by Zurich “Breaking Down Silos: AXA XL's New Approach to Casualty Insurance” | Sponsored by AXA XL “Weathering Today's Property Claims Management Challenges” | Sponsored by AXA XL “Storm Prep 2024: The Growing Impact of Convective Storms and Hail” | Sponsored by Global Risk Consultants, a TÜV SÜD Company “Partnering Against Cyberrisk” | Sponsored by AXA XL “Harnessing the Power of Data and Analytics for Effective Risk Management” | Sponsored by Marsh “Accident Prevention — The Winning Formula For Construction and Insurance” | Sponsored by Otoos “Platinum Protection: Underwriting and Risk Engineering's Role in Protecting Commercial Properties” | Sponsored by AXA XL “Elevating RMIS — The Archer Way” | Sponsored by Archer “Alliant's P&C Outlook For 2024” | Sponsored by Alliant “Why Subrogation is the New Arbitration” | Sponsored by Fleet Response “Cyclone Season: Proactive Preparation for Loss Minimization” | Sponsored by Prudent Insurance Brokers Ltd. “Subrogation and the Competitive Advantage” | Sponsored by Fleet Response   RIMS Publications, Content, and Links: RIMS Membership — Whether you are a new member or need to transition, be a part of the global risk management community! RIMS Virtual Workshops On-Demand Webinars RIMS-Certified Risk Management Professional (RIMS-CRMP) RISK PAC | RIMS Advocacy RIMS Strategic & Enterprise Risk Center RIMS-CRMP Stories — Featuring RIMS Vice President Manny Padilla   RIMS Events, Education, and Services: RIMS Risk Maturity Model®   Sponsor RIMScast: Contact sales@rims.org or pd@rims.org for more information.   Want to Learn More? Keep up with the podcast on RIMS.org, and listen on Spotify and Apple Podcasts.   Have a question or suggestion? Email: Content@rims.org.   Join the Conversation! Follow @RIMSorg on Facebook, Twitter, and LinkedIn.   About our guests: Morgan O'Rourke, RIMS Director of Publications and Risk Management Magazine Editor in Chief Hilary Tuttle, Managing Editor, Risk Management Magazine   Social Shareables (Edited For Social Media Use): There were 11,000 fires in the Northeast this year, largely in October and November. It's a different season and in a different region. The traditional risk models are thrown out the window. — Hilary Tuttle   There are always going to be hurricanes and natural disasters. There are always going to be cyber attacks. It's just a matter of what flavor they are this year. — Morgan O'Rourke   In the last year and a half, shipping through the Red Sea has become an untenable and sometimes uninsurable risk. Our standard expectations for doing business are going out the window or being upended. — Hilary Tuttle   People have to focus on the problem that's in front of them. You have to deal with the acute issues before you can deal with the systematic ones. — Morgan O'Rourke   For most who commented on social media, the murder of the UHC CEO was no surprise. UHC had a tremendous failure of reputation risk and public listening. — Hilary Tuttle   Phishing is not like the fast-typing hackers seen in the movies. They get the information through conversation. — Morgan O'Rourke   Nothing you put on the internet is private or innocuous. If you are an insurance executive who likes to go hiking at Mount Whatever, maybe that's not information you want to put on the internet. — Hilary Tuttle

December 18, 2024: Drex, Sarah, and Bill Join to discuss the highlights of 2024 and speculate on 2025. How do third-party risks and architectural vulnerabilities in systems like Change Healthcare and CrowdStrike reshape the priorities of CIOs? Can generative AI transition into a mature, reliable force in medicine without disastrous missteps? What does the rise of cybersecurity threats and evolving cloud operations mean for organizational resilience? Key Points:02:12 Third-Party Risks and Resilience09:08 Generative AI in Healthcare16:43 Mental Health and Access to Care23:15 Looking Ahead to Next Year27:13 Predictions for 202539:24 This Week Health: Future Plans and InitiativesThis Week Health SubscribeThis Week Health TwitterThis Week Health LinkedinAlex's Lemonade Stand: Foundation for Childhood Cancer Donate

In this episode, the hosts discuss the cyber attack on Change Healthcare that disrupted prescription services nationwide. They highlight the interconnectedness of the healthcare industry and the potential consequences of such attacks. The conversation touches on the importance of IT and supply chain risk management, the financial and regulatory implications for UnitedHealthcare, and the ethical considerations of patient privacy and confidentiality. The hosts also share personal experiences and insights related to the critical x1 pipeline for medications and the impact on military pharmacies. Takeaways Cyber attacks on the healthcare industry can have far-reaching consequences, impacting prescription services and patient care. IT and supply chain risk management are crucial in maintaining the security and availability of healthcare systems. Financial and regulatory implications may arise from cyber attacks on healthcare organizations. Protecting patient privacy and confidentiality is a significant concern in the face of IT disruptions. The disruption of the medication pipeline can have severe consequences for individuals who rely on prescriptions. Military pharmacies were also disrupted by the cyber-attacks, affecting active-duty military personnel. Change Healthcare may face legal and financial consequences for the cyber attack. Article: Change Healthcare Cyberattack Disrupts Services Nationwide—Here's What To Know https://www.forbes.com/sites/mollybohannon/2024/02/23/change-healthcare-cyberattack-disrupts-services-nationwide-heres-what-to-know/?sh=319d204885b9&fbclid=IwAR3dL3VaiFh4TBlN-VGRlsOuvsB1jzoXAXZHVok93b6ws-FTT7AZViMP4CU Please LISTEN

United Healthcare assassination, Brian Thompson, UnitedHealth Group, Andrew Witty, healthcare industry, The X-Files, Delay Deny Defend, Luigi Mangione, Mangione's background, Nancy Pelosi, insider trading, UnitedHealth Group insider trading scandal, gifted program, biometrics, Dark Web, health data and the black market for it, organ harvesting, Mangione's arrest, Ted Kaczynski, was the manhunt a sham?, Pennsylvania's role, was the murder driven by a rival corporation?, Mr. Robot, hacking, Black Cat, Change Healthcare, Change Healthcare hack, was the Thompson assassination related to the hack?, Black Pill culture, the future of political polarization onlineMusic by: Keith Allen Dennishttps://keithallendennis.bandcamp.com/Additional Music: Ilsahttps://ilsa.bandcamp.com/album/preyer Get bonus content on Patreon Hosted on Acast. See acast.com/privacy for more information.

December 16, 2024: In 2024's Final UnHack (the Podcast) Drex takes us through the year in a flash, highlighting everything from the Change Healthcare incident, Wizard Spider, and 23andMe data mishaps. Remember to stay a little paranoid, and we'll see you in 2025.Key Points:01:24: January01:54: February 02:36: March03:12: April Fools04:04: April04:45: May05:07: June05:50: July06:26: August07:41: September08:36: October09:34: November11:24: DecemberSubscribe: This Week HealthTwitter: This Week HealthLinkedIn: Week HealthDonate: Alex's Lemonade Stand: Foundation for Childhood Cancer

Nebraska Attorney General Mike Hilgers filed a lawsuit Monday against Change Healthcare due to a data breach in February that impacted more than 500,000 Nebraskans. The state alleges the healthcare company violated Nebraska's consumer protection and data security laws because of its weak security measures and delay in notifying customers about the breach. Nebraska is the first state to take action against the Tennessee-based company, but Hilgers says he expects other states to follow suit.

The killing of UntiedHealthcare CEO Brian Thompson has been viewed in one extreme as a wake up call to corporate America and in another extreme as the start of a glorious Red Guard revolution. The problem with both views is that they neglect to consider important details. First, the AP reported that bullet casings had the writing Deny, Defend, Depose though a few hours later the NYDN reported they read Deny, Defend, Delay - reference to a book about health insurance companies called Delay, Deny, Defend. Second, the shooter's manifesto was published in several places with different spelling and grammar. Third, and most importantly, United Healthcare, owned by UnitedHealth Group, is still facing ongoing lawsuits over their business practices despite Brian's murder. Brian alone faced court battles prior to being killed while the parent company UHG, was facing congressional inquiry into the largest health data breach in history. That breach affected 100 million people exposing their names, addresses, dates of birth, phone numbers, email addresses, and government identity documents, such as Social Security numbers, driver's license numbers, and passport numbers. Additionally, the  breached health care information encompasses diagnoses, medications, test results, imaging and care plans, health insurance information, and financial information related to claims and payments. Change Healthcare is one of the largest handlers of health and medical data, processing patient insurance and billing across the U.S. healthcare sector, including thousands of hospitals, pharmacies, and medical practices. And so in the midst of this, not to mention how UHC was overcharging the government, a CEO is shot by a wealthy, successful, handsome young man who supposedly rallied against woke ideology online. Something doesn't add up. His designation as the Smiling Assassin may remind us of James Holmes as the Joker, or Aaron Alexis reportedly hearing voices in his head. These are the minds of the paranoid that Joker attracts in Batman. These tricksters create schism and drive wedges. Ultimately, no matter what one thinks the obfuscation of Due Process in favor of blindly murdering people without trial, or in the middle of trail, stinks of two things: anarchy-communists revolutionaries and powerful people who wanted a guy dead but who are happy to pin a hit on a random kid. -FREE ARCHIVE (w. ads)SUBSCRIPTION ARCHIVEX / TWITTER FACEBOOKWEBSITEPAYPALCashApp: $rdgable EMAIL: rdgable@yahoo.com / TSTRadio@protonmail.comBecome a supporter of this podcast: https://www.spreaker.com/podcast/tst-radio--5328407/support.

Can yoga be the next big thing to shake up the healthcare game? Today's guest, Dr. Ben Straight, gets personal, sharing his incredible journey of overcoming chronic pain and transforming his life after severe back and nerve issues. He reveals how yoga, core strength, and small, consistent lifestyle changes helped him lose over 100 pounds and take back control of his health. Host Jack Russo joins Dr. Straight to explore how yoga could complement traditional healthcare and help more people live longer, healthier lives. It's an inspiring, down-to-earth conversation filled with tips, laughs, and big ideas.   Jack Russo Managing Partner Jrusso@computerlaw.com www.computerlaw.com https://www.linkedin.com/in/jackrusso "Every Entrepreneur Imagines a Better World"®️  

All the NEO Murderer updates:Luigi Mangione/Brian ThompsonMangione attended elite schoolsBA/MS PennGilman School, an elite all-boys preparatory school in Baltimore: In his valedictorian speech, Mangione praised classmates for "challenging the world"Mangione comes from a wealthy and influential Baltimore familyMangione is one of 37 grandchildren of the late Nick Mangione Sr., a prominent multimillionaire real-estate developer in Baltimore who died in 2008Members of the Mangione family own the Turf Valley Resort in Ellicott City, Maryland, and Hayfields Country Club in Hunt Valley, MarylandHe favorably reviewed the Unabomber Manifesto: Ted Kaczynski's "Industrial Society and Its Future""He was a violent individual — rightfully imprisoned — who maimed innocent people," Mangione wrote. "While these actions tend to be characterized as those of a crazy luddite, however, they are more accurately seen as those of an extreme political revolutionary.""'Violence never solved anything' is a statement uttered by cowards and predators,'" Mangione quoted.He founded an app and worked in techHe was arrested while on his laptop at a McDonald's, the police saidThe complaint said that when asked for identification, Mangione gave police officers a New Jersey driver's license with the name "Mark Rosario." When asked why he lied, Mangione replied, "I clearly shouldn't have," the complaint said.Police in Pennsylvania also found a three-page, handwritten “manifesto” taking aim at the health care industry for prioritizing profits over patient care by two law enforcement officials, according to the New York Times.Some reactionsCEO killing, rage over insurance plunges UnitedHealth into crisisBrian Thompson's death has become a symbol of revenge over denied medical bills and lack of access to necessary care, an issue that some UnitedHealth employees say they're growing increasingly anxious about.The vitriol following the shooting sparked a reckoning among some UnitedHealth employees. Much of the public animosity was aimed at the way insurance companies prevent Americans from getting the care their doctors prescribe. Some employees grappled with the idea that their paychecks were padded in part by the practice of denying care.Witty, in a video to staff last week, attempted to address the rage but failed to change the narrative for some workers. “As you've seen, people are writing things we simply don't recognize, are aggressive, inappropriate and disrespectful,” he said, urging employees to ignore the media. “There's no value in engaging.”But:Before the investor day last week was cut short, Witty used some of his time on stage to acknowledge the widespread dissatisfaction with his industry. “You only have to walk into a room with five people to hear four stories of frustration. ‘I couldn't find a doctor, I didn't know where to go. It's too difficult to understand,'” he said in a room full of financial analysts and investors.The culture at the top was shaped for years by veterans of the defunct accounting firm Arthur Andersen, where Chairman and former CEO Stephen Hemsley once worked. A previous CEO, William McGuire, unceremoniously left the company and settled with the Securities and Exchange Commission over backdating stock options that regulators alleged enriched him and other executives.In recent years, a series of acquisitions have consolidated UnitedHealth's position so much that when a cyberattack took out its Change Healthcare subsidiary, doctors offices and hospitals across the country were paralyzed. That market dominance has come under review by the Department of Justice, Bloomberg News has reported. Members of Congress who have called for a breakup of the conglomerate.Thompson was one of a handful of executives who sold UnitedHealth shares after the company learned it was under investigation by the DOJ, but before that information was shared with the public, Bloomberg reported. The company's stock fell when the DOJ investigation was reported. Thompson sold $15.1 million worth of shares, according to Bloomberg calculations.Market insanity: rage of insurer causes murder of NEO, up 1%. Social media outpour of rage over insurers because of NEO murder, down 8.5%1-star McDonald's reviews and sympathetic merch: Companies try to stop online support for CEO killer suspectTed Cruz Accuses Luigi Mangione of Being a 'Leftist' Despite Social Media Posts Praising Tucker Carlson and Decrying the 'Woke Mind Virus'After thousands celebrated UnitedHealthcare CEO Brian Thompson's killing, now even top internet sleuths are not willing to help in investigation; what's the reason?“This sparking of online praise for the killing or the killer is shocking in nature”“some are talking about Thompson being one of those responsible for the fragile state of the US Healthcare industry, which is shocking as, during other cases netizens usually post videos, condolencesFrom the Indian English-language business-focused daily newspaper: “delivering profits of a whopping $16.4 billion, in the previous year alone”How UnitedHealthcare and other insurers use AI to deny claims UnitedHealthcare and Humana have been sued over their use of algorithms to determine coverage of care for some patientsIn October, a report from the U.S. Senate Permanent Subcommittee on Investigations showed that the nation's insurers have been using AI-powered tools to deny some claims from Medicare Advantage plan subscribers.The report found that UnitedHealthcare's denial rate for post-acute care — health care needed to transition people out of hospitals and back into their homes — for people with Medicare Advantage plans rose to 22.7% in 2022, from 10.9% in 2020.The rise coincides with UnitedHealthcare's implementation of an AI model called nH Predict, originally developed by naviHealth, a subsidiary of UnitedHealth Group that has since been rebranded.Algorithms like nH Predict can analyze millions of data points to generate predictions and recommendations by comparing patients to others with apparently similar characteristics, according to an article on JAMA Network. However, the article cautions that claims of enhanced accuracy through advanced computational methods are often exaggerated.Both UnitedHealth and Humana are currently facing lawsuits over their use of nH Predict. The suits allege that insurers pressured case managers to follow the algorithm's length-of-stay recommendations, even when clinicians and families objected.One lawsuit filed last year against UnitedHealth claims that 90% of the algorithm's recommendations are reversed on appeal.The lawsuit states that UnitedHealthcare wrongfully denied elderly patients care by “overriding their treating physicians' determinations as to medically necessary care based on an AI model that Defendants know has a 90% error rate.”Leaked video shows UnitedHealth CEO defending practices that prevent ‘unnecessary' careAccording to ValuePenguin, a site that helps users compare insurance plans' costs, UnitedHealth's 32% claims denial rate was twice the industry average. Disclosure?CVS, Anthem, other big corporations remove executive photos from their websites after UnitedHealthcare CEO shootingUnitedHealthcare CEO killing spurs Centene to hold virtual meeting and insurers to pull exec photosUnitedHealthcare and other major insurance companies pull company and board leadership bios from their websites after executive's killingUnitedHealthcare and other insurers are pulling info about execs offline after a CEO was killed SecurityThis was preventable': Corporate world shudders at new risks after slaying of UnitedHealthcare CEOHere's how the killing of the UnitedHealthcare CEO will change executive security moving forwardExperts say companies will more closely track their corporate and executives' social media accounts for any potential threats.Targeted killing of UnitedHealth CEO sends a chill among executivesUnitedHealthcare CEO shooting reveals complexities in safeguarding corporate executivesThomson death benefits payout: $20,893,067100 Most Powerful People in Business Main Takeaways:Andrew Witty (51)The actual CEO at UnitedHealthThe company has been in the spotlight this year after suffering a major cyberattack, and Witty testified before Congress that data from “maybe” one-third of Americans was stolen.!28.5 POC/17.5 FMary Barra (9) was a DEI placement, Sorry, Mary.One black man? And it's a 17-year-old from a horrible restaurant. Sorry, Damola Adamolekun (89)Became CEO in August 2024; bankruptcy plan approved 10 days laterWhere's Lowe's CEO/Chair and FedEx board member Marvin Ellison?How about Eaton ($143B) CEO/Chair Craig Arnold?Also Nom chair at Medtronic ($107B) where he has 11% influenceDaniel Ek (37) way higher than Tik Tok founder and ByteDance Chair Zhang Yiming (92) from Spotifybut nobody from Snap or RedditCarlos Tavares (62)“Carlos Tavares, CEO of Stellantis, is a self-described “petrol-head” whom colleagues view as a “Samurai” laser-focused on building competitive car brands.”“on a daunting path to turn around the carmaker's fortunes before he retires in 2026. Stellantis is dealing with a bloated inventory following unpopular price hikes, with profits nearly halving in the first half of 2024 to $5.6 billion”Fired last weeK: Stellantis CEO Carlos Tavares lost control of the automaker with ‘arrogant' mistakes, sources sayDoesn't the fact that co-CEOs are listed together undermine the entire list? It means the position is powerful and not the person:Netflix: Ted Sarandos and Greg Peters (41)KKR: Scott Nuttall and Joseph Bae One of the most powerful people in business in the world doesn't even have a picture? Charlwin Mao (77): CEO and Cofounder of Chinese social media company XiaohongshuSatya Nadella (3) is more powerful than Mark Zuckerberg (7) and Jeff Bezos (11)?

Incoming President Donald Trump is reportedly weighing significant changes to Medicaid, and some states are rushing to get their waiver requests in before President Biden leaves office. UnitedHealth Group announces Change Healthcare's clearinghouse services are fully operational following a massive cyberattack on the company earlier this year. And, nearly 10,000 Corewell nurses in southeast Michigan will unionize. We'll get that story—and more—coming up on today's episode of the Gist Healthcare Hosted on Acast. See acast.com/privacy for more information.

The medical records of 1/3 of Americans were stolen from Change Healthcare in February 2024, and leaked to the dark web. So who is Change Healthcare, and why did they have your data in the first place? Get the skinny on this week's episode.ResourcesChange Healthcare Cyberattack Affected 100 Million IndividualsThe Change Healthcare attack: Explaining how it happenedWyden Hearing Statement on Change Healthcare Cyberattack and UnitedHealth Group's ResponseTestimony of Andrew Witty, Chief Executive Officer, UnitedHealth Group Before the House Energy and Commerce Committee Subcommittee on Oversight and Investigations “Examining the Change Healthcare Cyberattack”The impact of the Change Healthcare cyberattack: What to knowChange Healthcare Cyberattack: What Consumers Should KnowReceived a letter from Change Healthcare? What you should do nextChange Healthcare Attack Cost Estimate Reaches Nearly $2.9BChange Healthcare Finally Admits It Paid Ransomware Hackers $22 Million—and Still Faces a Patient Data LeakSend us a textEveryday AI: Your daily guide to grown with Generative AICan't keep up with AI? We've got you. Everyday AI helps you keep up and get ahead.Listen on: Apple Podcasts SpotifySupport the showJoin our Patreon to listen ad-free!

Healthcare is changing. Trump's policies could turn your family's finances upside down. Will abortion access be restricted? Is the Affordable Care Act on the chopping block? What about those prescription drug prices? We're exploring all that and more on this week's podcast. It's information you need to know. So sit back, relax, and check it out. It could make you healthier and wealthier. And to stay ahead of the curve, subscribe to the Money Talks News newsletter and YouTube channel now. Your future self will thank you! https://youtu.be/4KHlsX2n4LY Timestamps: 0:00 Introduction1:00 Abortion Policies and Economic Impact5:00 Affordable Care Act Modifications9:00 Make America Healthy Again Movement13:00 Food Regulations and Deregulation14:40 Conclusion Click Here for the Free Money Talks News Newsletter! Take our course The Only Retirement Guide You'll Ever Need Take our course Money Made Simple Got a question, comment or topic you'd like to suggest? Tell us about it! Email us at hello@moneytalksnews.com. That's hello@moneytalksnews.com.  Become a member: https://www.moneytalksnews.com/members/See omnystudio.com/listener for privacy information.

In this episode, you'll discover:Lessons learned from private equity groups scrutinizing the business; and how that can be applied to your business today to make millionsNavigating the rough seas of change in a business What we need to know about the chiropractic business landscape nowWhat we need to know about what's coming next in chiropractic Episode Highlights00:56 - An introduction to Dr. Brian Capra and the conversation, focusing on the "last, now, and next" framework03:49 - The need to re-engage and re-motivate, leading to a deeper understanding of private equity, valuations, and multiples.06:29 - The complexity of merging companies and the importance of advisors in the process.09:41 - The value of having a platform with multiple products to increase valuations as well as value to customers.15:15 - The importance of building trust and credibility with customers through various services and products.20:19 - The significant challenge of a cyber attack on Change Healthcare, which affected insurance billing and caused a backlog of 200,000 claims.22:25 - The need to build an infrastructure to support rapid growth.27:42 - The potential of AI to scale the business and the importance of embracing new technologies. Resources MentionedTo learn more about the REM CEO Program, please visit:  http://www.theremarkablepractice.com/rem-ceoSubscribe to our newest podcast "Build Your Remarkable Practice" here: https://podcasts.apple.com/us/podcast/build-your-remarkable-practice-for-chiropractors/id1734107477  Schedule a Brainstorming call with Dr. PeteDr. Stephen's LinkedInDr. Peter's LinkedInThe Remarkable CEO WebsiteDr. Stephen's Book – The Remarkable Practice: The Definitive Guide to Build a Thriving Chiropractic Business

We are happy to welcome Colleen Huff to the Growth in Dentistry podcast! Colleen is a Revenue Cycle Management expert with 30 years of dental industry experience. Listen in to hear Colleen and Steve discuss:Revenue Cycle Management challenges in dentistry, particularly after the Change Healthcare breach and how AR days are up since the breachImportance of understanding clearinghouse operations and insurance claim processesTips for managing claims and time management strategies…and so much more!Check out Colleen's book, *A Mouthful of Insurance*, out now: https://www.amazon.com/Mouthful-Insurance-Proper-training-tomorrow/dp/B0D8WLNZ3T. See a demo of DI and get a $50 gift card: http://get.dentalintel.net/podcast.

In episode 353, we discuss the February 2024 ransomware attack on Change Healthcare, resulting in the largest data breach of protected health information in history. Notifications have been sent to 100 million Americans, including hosts Tom and Kevin. We explore the implications of this significant breach and whether paying ransoms is a viable solution. In […] The post Fallout from the Change Healthcare Breach, Mortgage Wire Fraud What You Need To Know appeared first on Shared Security Podcast.

Even if you've never been a United Health customer and even if you've never heard of Change Healthcare - you can be a victim of the Change Healthcare data breach! Just ask show host Ken Ray! He had to learn firsthand about credit freezes this week - learning he will share with us on Checklist No. 398, brought to you by SecureMac.   Check out our show notes: SecureMac.com/Checklist And get in touch with us: Checklist@Securemac.com

Change Healthcare and UnitedHealth Group are in the process of notifying 100 million people affected by a recent ransomware attack that compromised sensitive information. We also cover Delta Airlines' lawsuit against CrowdStrike over a software update outage that caused massive flight cancellations. Lastly, find out how the San Francisco Municipal Transportation Agency is tackling tech debt with a $212 million investment to replace a legacy system still relying on 5.25-inch floppy disks.Remember, Stay a Little Paranoid Subscribe: This Week HealthTwitter: This Week Health LinkedIn: Week Health Donate: Alex's Lemonade Stand: Foundation for Childhood Cancer

In today's episode of Cybersecurity Today, host Jim Love covers stories including, Cisco releases an emergency patch for a vulnerability exploited in brute force attacks, Delta Airlines sues CrowdStrike over a problematic software update leading to flight disruptions, UnitedHealth confirms the massive data breach at Change Healthcare affecting 100 million people, and Apple announces a $1 million bug bounty for hacking Apple Intelligence servers. Stay informed on these pivotal issues impacting the tech and cybersecurity landscape. 00:00 Emergency Patch for Cisco Vulnerability 02:02 Delta Sues CrowdStrike Over Flight Disruptions 03:48 Apple's $1 Million Bug Bounty Program 05:14 UnitedHealth Data Breach Impact 07:17 Show Wrap-Up and Contact Information

The recent revelation by UnitedHealth Group that the ransomware attack on its subsidiary Change Healthcare exposed the sensitive data of more than 100 million customers is once again bringing scrutiny to how companies manage personal information. In this episode of Privacy Files, we talk to seasoned privacy professional, Saima Fancy. Saima is a Senior Privacy Specialist at Ontario Health in Canada. During the interview, she explains how her approach to "privacy by design" involves working at the intersection of engineering, law and policy, and cybersecurity. Saima says that one of the challenges privacy professionals face worldwide is the fact that 80% of the world's data is unstructured. She also discusses what's involved in conducting a privacy impact assessment. To wrap up the episode, Saima weighs in on smart device technology, AI and digital footprints, and even offers some advice for people considering a career as a privacy professional. This conversation provides valuable insight on what it takes on the corporate side to protect customers' personal data. Links Referenced: https://techcrunch.com/2024/10/24/unitedhealth-change-healthcare-hacked-millions-health-records-ransomware/ OUR SPONSORS: Anonyome Labs - Makers of MySudo and Sudo Platform. Take back control of your personal data. www.anonyome.com MySudo - The world's only all-in-one privacy app. Communicate and transact securely and privately. Talk, text, email, browse, shop and pay, all from one app. Stay private. www.mysudo.com MySudo VPN - No personal information required to sign up. You don't even need a username and password. Finally, a VPN that is actually private. https://mysudo.com/mysudo-vpn/ Sudo Platform - The cloud-based platform companies turn to for seamlessly integrating privacy solutions into their software. Easy-to-use SDKs and APIs for building out your own branded customer apps like password managers, virtual cards, private browsing, identity wallets (decentralized identity), and secure, encrypted communications (e.g., encrypted voice, video, email and messaging). www.sudoplatform.com Reclaim - Whether you're just beginning your privacy journey, or have been working at it for some time, Reclaim is the perfect tool for assessing the size of your digital footprint and then taking action to reduce it. It's an also an excellent way to see if your personal information was exposed in a data breach. https://mysudo.com/reclaim/

The Verge says we could get GPT-5 by December, but it might be called Orion. The biggest health care data breach in US history. Turns out Americans can actually produce high yield, quality silicon. Or, at least, Arizonans can. And, of course, the weekend longreads suggestions. Here's what you missed today in the world of Tech.Sponsors:Acorns.com/rideLinks:OpenAI plans to release its next big AI model by December (The Verge)UnitedHealth says data of 100 million stolen in Change Healthcare breach (BleepingComputer)TSMC's Arizona Chip Production Yields Surpass Taiwan's in Win for US Push (Bloomberg)Bluesky raises $15M Series A, plans to launch subscriptions (TechCrunch)Weekend Longreads Suggestions:The mystifying, acrimonious battle between Arm and Qualcomm (Financial Times)Who Gets the TikTok in the Divorce? The Messy Fight Over Valuable Social Media Accounts (WSJ)See Privacy Policy at https://art19.com/privacy and California Privacy Notice at https://art19.com/privacy#do-not-sell-my-info.

The February cyberattack on Change Healthcare could have compromised the data of 100 million people, making it the largest healthcare data breach reported to the federal government. The Cleveland Clinic and Amazon to partner on primary care clinics in Ohio. And, Senators want more information from Eli Lilly and Pfizer about their direct-to-consumer platforms. We'll get that story—and more—coming up on today's episode of the Gist Healthcare podcast. Hosted on Acast. See acast.com/privacy for more information.

In today's episode I speak with Wendy Dean, MD, is a psychiatrist and co-founder of the non-profit organization Fix Moral Injury. We discuss her book If I Betray These Words and the work being done to address moral injury in healthcare.  "Moral injury describes the plight of tough, resourceful, and resilient clinicians who feel trapped between the patient-first values of their Hippocratic oath and the business imperatives of a broken healthcare system." "Moral injury is distinct from other forms of distress or pain, including burnout. The two conditions may occur separately, or simultaneously, and may influence each other, but addressing one does not guarantee resolution of the other." Her recent article in The New England Journal of Medicine, titled Moral Injury and the Global Health Workforce Crisis, underscores the urgent need for compassionate care within healthcare systems. She is the host of the podcast Moral Matters with Dr. Simon Talbot, which explores moral injury faced by healthcare professionals with a focus on solutions and the need for change. More recently, she hosts 43cc with Dr. Matt Ramsey and they take an in-depth look at medicine's machinery tearing the patient-physician relationship apart and to stitch them back together.  Dr. Dean is a leading voice on moral injury in medicine, highlighting the impact of systemic issues on clinician well-being.  A passionate advocate for healthcare reform, Wendy fosters a culture of well-being and support for healthcare providers. Subscribe on Apple or YouTube or via the Website

In the leadership and communications segment, CISA Releases Cyber Defense Alignment Plan for Federal Agencies, UnitedHealth Group CISO: We had to ‘start over' after Change Healthcare attack, 20 Essential Strategies for Leadership Development Success, and more! AI is bringing productivity gains like we've never seen before -- with users, security teams and developers already reaping the benefits. However, AI is also bolstering existing threats to application security and user identity -- even enabling new, personalized attacks to emerge. Shiven Ramji, President of Customer Identity at Okta, joins Business Security Weekly to discuss how AI is changing app authentication and authorization for developers and security teams. With traditional and AI-powered applications facing more complex security challenges, companies need to explore new ways to protect their end users while also creating seamless customer experiences – and that starts with Identity. Segment Resources: https://developerday.com/ https://www.okta.com/customer-identity/ This segment is sponsored by Okta. Visit https://www.securityweekly.com/okta to learn more about them! Visit https://www.securityweekly.com/bsw for all the latest episodes! Show Notes: https://securityweekly.com/bsw-365