This week, Hacking Healthcare™ begins with a look at concerns over China’s use of exit bans. We examine what they are, how they are being used by the Chinese government, and some considerations Health-ISAC members may wish to think about. Next, we take a look at an upcoming law in the U.S. state of Florida that is set to prohibit the offshoring of some healthcare data.
This week, Hacking Healthcare takes a look at a study recently published in the Journal of the American Medical Association (JAMA) that sought to understand the wider impact that cyberattacks have on regional healthcare facilities adjacent to the actual victim. The study appears to confirm what many Health-ISAC members already know: The impacts of cyberattacks radiate outward, and the harm they cause is likely not fully understood.
This week, Hacking Healthcare provides an overview of a new U.S. Senate bill that purports to address the cybersecurity barriers affecting rural hospitals. We examine what the provisions of the bill call for, assess the likelihood of it making a significant positive impact, and then place it within the larger conversation on critical infrastructure cybersecurity that is currently taking place in the United States.
This week, Hacking Healthcare begins with a guest essay on advancing business, operational, and financial alignment to cybersecurity threats, which ties into the Securities and Exchange Commission’s recently proposed cybersecurity rule requirements. Next, we provide an update on the newest developments surrounding the NIST Cybersecurity Framework revision.
This week, Hacking Healthcare takes a look at developments in the international community. Specifically, we examine new developments related to the United Nations (U.N.) Cybercrime Treaty and analyze what the healthcare sector should expect from this international process.
This week, Hacking Healthcare takes a look at two new cybersecurity proposals that could have major effects on cyber threat information-sharing across the European Union (EU), as well as on incident response and recovery for critical sectors like healthcare, and for healthcare entities that use managed security service providers.
This week, Hacking Healthcare examines new CISA guidance on secure-by-design/default, which received significant international support but left some in the private sector frustrated by the approach. Next, we break down three new, free cybersecurity resources published by the Department of Health and Human Services (HHS) that could help Health-ISAC members of all shapes and sizes.
This week, Hacking Healthcare provides an update on the FDA’s implementation of cybersecurity requirements for medical devices that were outlined in the 2023 Consolidated Appropriations Act. Next, we take another look at supply chain security as another significant incident pushes the issue back into the headlines.
This week, Hacking Healthcare examines a politically motivated healthcare sector cyberattack to investigate both hacktivists and the potential necessity of healthcare entities to weigh high-profile patient data in their risk assessments. Next, we give you the heads-up on the Biden administration’s attempts to ease the cybersecurity regulatory burden through harmonization.
This week, Hacking Healthcare examines the fallout of the 2020 Blackbaud ransomware incident that affected thousands of the organization’s customers. Specifically, we examine what happened, how it led to a $3 million regulatory settlement, and what Health-ISAC members can learn from it.