Subscribe to the Fortra Cybersecurity Blog

Subscribe today and we'll save you time and effort by emailing a quick overview of our top picks every Wednesday. Join our 15,000+ subscribers and stay informed.

Editor's Pick

Blog

Security vs. Compliance: What's the Difference?
Taming Shadow IT: What Security Teams Can Do About Unapproved Apps and Extensions
Preventing the Preventable: Tackling Internal Cloud Security Risks
Japan's Active Cyberdefense Law: A New Era in Cybersecurity Strategy
The Bullseye on Banks: Why Financial Services Remain a Prime Target for Cyberattacks
Aligning Software Security Practices with the EU CRA Requirements
5 Critical Security Risks Facing COBOL Mainframes
Shifting Gears: India's Government Calls for Financial Cybersecurity Change
Brace Yourselves: The Game-Changing Impact of India's DPDP Act, 2023
What’s New in Tripwire Enterprise 9.3?
Expanding on ADHICS v2.0: A Closer Look at Healthcare Cybersecurity in the UAE
NIST’s Responsibilities Under the January 2025 Executive Order
Blog

Proposed HIPAA Update Makes Yearly Pen Testing Mandatory

In January of this year, significant changes to the HIPAA Security Rule were proposed by the Office of Civil Rights for the Department of Health and Human Services (OCR).The proposed update to the HIPAA Security Rule, published on January 6, 2025, introduces a significant new requirement: all covered entities and business associates must conduct penetration testing of their electronic information...
Dead Man's Scripts: The Security Risk of Forgotten Scheduled Tasks in Legacy Systems
Compliance Fatigue Is Real—And It’s Putting Cybersecurity at Risk
How to Stay Compliant with the New HIPAA Security Rule Updates
Assessment Frameworks for NIS Directive Compliance
PIVOTT Act Revived to Tackle Growing Cybersecurity Workforce Shortages