News May 31, 2023

HHS releases hospital cyber resiliency landscape analysis

4 min read - On April 17, 2023, The U.S. Department of Health and Human Services (HHS) 405(d) Program announced the release of its Hospital Cyber Resiliency Initiative Landscape Analysis. This landmark analysis reports on domestic hospitals’ current state of cybersecurity preparedness. The scope…

News May 1, 2023

Hacking caused 80% of healthcare data breaches in 2022

3 min read - Reporting on cybersecurity issues tends to focus on the results of a breach. However, the most important takeaway is how an event happened in the first place. By understanding the incident’s cause and the direction of cyber crime trends, healthcare…

News January 16, 2023

Third-party risk contributes to healthcare data breaches

4 min read - Since 2009, the number of individuals affected by health data breaches in the U.S. has exceeded the country’s population of 331.9 million. As per federal statistics, this means many people have been victims of more than one incident. Unfortunately, the…

CISO November 10, 2022

Reporting healthcare cyber incidents under new CIRCIA rules

4 min read - Numerous high-profile cybersecurity events in recent years, such as the Colonial Pipeline and SolarWinds attacks, spurred the US government to implement new legislation. In response to the growing threat, President Biden signed the Cyber Incident Reporting for Critical Infrastructure Act…

News August 24, 2022

Congress considers new healthcare cybersecurity bill

2 min read - U.S. Senators Jacky Rosen (D-NV) and Bill Cassidy, MD (R-LA) recently proposed the Healthcare Cybersecurity Act of 2022 to Congress. This new bill aims to reduce cybersecurity attacks and data breaches in the healthcare and public health industries. The plan:…

Healthcare August 11, 2022

Incident Response for Health Care IT: Differences and Drivers

4 min read - Threat actors continue to target the health care industry. IBM’s Threat Intelligence Index for 2022 rates the industry as the sixth most targeted. That puts it close behind the energy and retail and wholesale sectors. Certain regions seem to be…

Healthcare July 19, 2022

Hospital Ransomware Attack: Here’s What a Cybersecurity Success Story Sounds Like 

3 min read - Major ransomware attacks are scary, but against hospitals, they are even worse. One notable attack in August 2021 forced Ohio’s Memorial Health System emergency room to shut down (patients were diverted to other hospitals). In all hospital attacks, the health,…

CISO December 7, 2021

Understanding the Cyber Risk Exposures Within the Health Care Industry

4 min read - The health care industry is one of the most popular and lucrative targets for cyberattacks and malicious activity. Health care organizations always present as an attractive proposition to hackers as they possess high volumes of sensitive information about patients and…

Data Protection May 6, 2021

Health Care Data: It’s Your Personal ‘National Security’ Information

6 min read - If you wanted to put all the pieces of a person’s profile together, health care data would likely be the most important piece of the personally identifiable information (PII) puzzle. It’s powerful. A heartbeat can open a door. This data…

Data Protection April 6, 2021

Perpetual Disruption Part 1: What is Good Cybersecurity Governance in Health Care?

2 min read - Disruption means constant change. This brings benefits to businesses and can improve customer loyalty. But, the costs tend to be new and large security challenges. Which raises the question: What role does the chief information security officer (CISO) hold in this…