Major cybersecurity breaches continue to plague the US healthcare industry, and on December 27, 2024, the U.S. Department of Health and Human Services (HHS) issued a Notice of Proposed Rulemaking (NPRM) to amend the HIPAA Security Rule, titled “The HIPAA Security Rule to Strengthen the Cybersecurity of Electronic Protected Health Information”. Comments were requested and over 4000 were received before the comment period ended on March 7 2025. This blog summarizes what the comments covered – and what comes next.
First seen on securityboulevard.com
Jump to article: securityboulevard.com/2025/03/hipaa-security-rule-amendment-key-public-comments-and-next-steps/
