Post Topic: Hacking Healthcare
Health-ISAC Hacking Healthcare 9-28-2022
TLP White
This week, Hacking Healthcare begins by examining an SEC enforcement action taken against Morgan Stanley for serious and extensive failures to protect consumer data. We break down what happened and what healthcare organizations can learn from the incident. Next, we break down a new report on healthcare cybersecurity that has some surprising and distressing findings on how malicious cyber activity impacts patient care. Finally, we provide another brief reminder of the resourcefulness and adaptability of malicious cyber actors, and why it’s important to always remain vigilant.
Health-ISAC Hacking Healthcare 9-8-2022
TLP White
This week, Hacking Healthcare begins by examining a recent FTC action related to the Biden administration executive order on reproductive health that targets a data broker over the sale of identifiable location data. We consider how the FTC has begun to engage with data privacy and security issues more actively and how this case may illuminate a broader discussion on the anonymization or deidentification of sensitive data. Next, we look at how a cyberattack last July has led one country to sever all diplomatic ties with another and why the U.S. government’s response seems notable.
Health-ISAC Hacking Healthcare 9-1-2022
TLP White
This week, Hacking Healthcare begins by examining the Federal Trade Commission’s proposed rulemaking on harmful commercial surveillance and lax data security. We briefly explain why healthcare sector members might want to engage with the FTC’s process, despite its potential completion being many years from now. Then, we break down some takeaways from a recent ransomware attack that put a French hospital out of commission, including what to make of the prevalence of healthcare sector attacks, as well as posing questions about the role of government.