healthcare
Safeguard articles tagged "healthcare" — guides, analysis, and best practices for software supply chain and application security.
25 articles
Software Supply Chain Security for Healthcare
From FDA premarket SBOM requirements to a strengthened HIPAA Security Rule and connected medical devices with decade-long lifecycles, healthcare has a distinct supply chain problem. Here is how to build a program that holds up.
Ransomware Economics in 2026: Data Extortion Wins, Encryption Loses
Payment rates hit record lows in 2025 while attack volume surged. The result is a colder, leaner extortion economy built on data theft, not encryption — and a RaaS market reconsolidating around a handful of operators.
HIPAA Security Rule Update: What the 2026 Final Rule Will Require
HHS published the HIPAA Security Rule NPRM in January 2025. Finalization is on the agenda for 2026. Covered entities and business associates need to start work now.
SBOMs in Healthcare: Patient Safety Meets Software Transparency
Healthcare organizations face unique SBOM challenges driven by FDA requirements, device lifecycles, and patient safety stakes.
Software Supply Chain Security for Healthcare (HIPAA) 2026
Software supply chain security for healthcare in 2026 means the new HIPAA Security Rule, 405(d) practices, and FDA postmarket expectations converging on SBOM.
Change Healthcare Ransomware 2024: Deep Dive
The Change Healthcare ransomware attack knocked US healthcare payments offline for weeks. A missing MFA on a Citrix portal was the root cause United confirmed.
Healthcare Supply Chain Security Baseline for 2026
What hospitals and payers should actually require from their software vendors in 2026: HIPAA-aligned controls, SBOM expectations, and the threats now hitting clinical environments.
A Healthcare System's Self-Healing Container Rollout
An anonymized account of how a regional North American healthcare system deployed Safeguard's self-healing container base images across 600+ workloads.
Synnovis NHS Qilin Ransomware: Pathology Supply Chain Lessons
Eighteen months after Qilin encrypted Synnovis, the pathology provider finally finished notifying NHS trusts. We unpack how a single supplier paralysed London hospitals and how defenders can prepare.
Software Supply Chain Security for Regulated Industries
Healthcare, finance, energy, and defense face unique supply chain security requirements. Here is how regulated industries should approach SBOM compliance and vulnerability management.
The HIPAA Security Rule Update and Your Supply Chain
HHS's December 2024 NPRM rewrites the HIPAA Security Rule with explicit software supply chain, SBOM, and business associate controls set to take effect in 2025 and 2026.
Kettering Health Interlock Ransomware: A 14-Hospital System Goes Dark
On May 20, 2025, Interlock ransomware encrypted Kettering Health across 14 Ohio hospitals. The actor sat in the network for 41 days before encryption. We unpack the dwell time and the recovery.