HHS

FTC, HHS warn of potential privacy and security risks embedded in online health sites

The agencies noted hospitals and telehealth providers could be exposing sensitive patient health information through online tracking tools like Meta Pixel and Google Analytics.

FDA Announces Contract for Automation in Drug Performance Analyses

The Food and Drug Administration is asking for proposals for automated devices that can provide high-definition imaging and critical analyses of drug performance as the agency works to integrate more AI.

Federal Cyber Leaders Emphasize Standards Development for Stronger Networks

The critical infrastructure experts upheld common cybersecurity standards as a key to resilient networks and private sector collaboration.

FDA Seeks Insight into How AI can Help and Hurt Drug-Making

The Food and Drug Administration is seeking public feedback amid its efforts to balance the advantages and risks of deploying artificial intelligence and machine learning into drug creation and approval processes.

HHS Launches New Cybersecurity Awareness Resources

The Department of Health and Human Services issued three new online resources for health care entities to fortify their digital networks.

Proposed HIPAA Rule Would Restrict Law Enforcement Access to Abortion, Reproductive Health Data Across State Lines

The HHS published a proposed modification to HIPAA’s privacy rule, giving new protections to personal health information related to reproductive care history in the wake of Dobbs and the overturning of Roe v. Wade.

CDC Seeks Digital Health App for Its Employees

The mobile application should provide meditation and mindfulness activities to help employees manage stress.

CISA, South Korean Agencies Issue Joint Warning on North Korean Ransomware

The new cybersecurity advisory spotlights North Korean-backed actors targeting healthcare networks with ransomware.

New Health-Focused Advanced Research Agency Seeks $500M in Technical Support

The Health and Human Services Department’s version of DARPA—ARPA-H—is setting up a wide-ranging contract for support staff.

NIH’s Governmentwide IT Acquisition Center Appoints Permanent Director

Brian Goodger, who has served as acting director of the National Institutes of Health Information Technology Acquisition and Assessment Center since 2021, will now helm the center in a permanent capacity.

FDA Set to Issue Final Rule Classifying VR Therapy Device for Pain Relief

The FDA said the class II designation for AppliedVR’s virtual reality medical device for the treatment of chronic lower back pain will “enhance patients’ access to beneficial innovation.”

CDC Wants Real-time Data on COVID, Flu Vaccine Effectiveness

The public health agency aims to increase its use of real-time data to track the effectiveness of respiratory vaccines and is looking for possible vendor solutions.

CMS Subcontractor Breach Potentially Exposes Sensitive Data of 254,000 Customers

The Centers for Medicare and Medicaid said the breach involved a subcontractor that appears to have violated its obligations to the agency.

GAO: Agencies Need to Conduct Cyber Risk Assessments of IoT, OT Devices in Critical Infrastructure Sectors

A Government Accountability Office report found that the agencies responsible for managing infrastructure in the healthcare and public health, energy and transportation sectors need to better assess their cyber risk mitigation strategies.

Proposed Rule Would Prioritize Patient Consent In Dealing With Mental Health Data

The rule could have significant ramifications across several health care fields.

CISA to Focus on Water, Education and Health Sectors Over the Next Year 

The agency contributed to the release of security requirements for the transportation sector this week and is expected to issue cross-sector performance goals for critical infrastructure companies’ voluntary adoption next week.