​The U.S. Department of Health and Human Services' oversight of privacy and cybersecurity regulations in the healthcare sector is deeply flawed, even as the agency is promoting the online digitization and storage of Americans' health records, according to congressional investigators.

The prevalence of and perhaps damage caused by ransomware-style cyberattacks is greater in the education sector than any other industry, according to a newly released research report by security ratings firm BitSight.

Information security professionals in the healthcare industry say their top priority is finding ways to deal with novel threats, rather than simply meeting standards set out in law or regulation, according to a new survey.

More than 9 million U.S. patient health care records were put up for sale on the dark web — a portion of the internet hidden by anonymity tools — in just the last three days, according to Denver-based firm OWL Cybersecurity.