Name: Relias Media
Price range: $

HHS Proposes Cybersecurity Requirements for Hospitals

The Department of Health and Human Services (HHS) recently released a concept paper outlining its cybersecurity strategy for the healthcare sector, focusing specifically on strengthening resilience for hospitals threatened by cyberattacks. HHS outlined four pillars for action, including new voluntary healthcare-specific cybersecurity performance goals.

Ransom Demands Decrease and More Companies Refuse to Pay

The number of ransomware victims opting to pay the ransom has fallen to a record low. At the beginning of 2019, 85% of ransomware victims paid a ransom. However, that figure fell to 46% in the middle of 2021 and 29% in the last quarter of 2023.

Ransomware Attack Can Affect Hospitals Nearby, Create Havoc

If one’s response to a hospital in the community fighting a ransomware attack is only relief that it was not their facility, they could be in for a surprise. Even hospitals not hit by hackers can feel the ripple effect and suffer consequences.

Killnet Group Targets U.S. Hospitals with Cyberattacks

Hospitals and health systems should review their defenses against the cyber breach known as Distributed Denial of Service in response to threats from the pro-Russia hacktivist group known as Killnet. More than a dozen hospitals have been hit by Killnet attacks, taking down forward-facing webpages and breaching protected health information.

Three Steps to Better Cybersecurity

Healthcare organizations that are reactive rather than proactive with cybersecurity are especially vulnerable to ransomware attacks. Staying proactive is about much more than developing and implementing an incident response to comply with HIPAA.

Paying Ransom Is a Loser’s Game

Healthcare organizations have paid ransom to regain access to their computer systems, but that is a bad move, experts say.

CommonSpirit Ransomware Attack Holds Lessons for Cybersecurity

A ransomware attack on a large health system forced it to shut down electronic health records and cancel appointments — and there are indications it may have threatened patient safety. Hackers might have exploited weaknesses that resulted from a series of mergers and acquisitions.

Cyberattacks Increasing Since Pandemic Began

Since the beginning of the pandemic, the healthcare industry has seen a significant rise in cyberattacks. The combination of the pandemic’s effects — crowded facilities, expanded telehealth usage, exhausted workers — with more reliance on medical devices has left the industry vulnerable to cybercriminals.

Contact Manufacturer When Medical Device Is Compromised

The response plan for a compromised medical device should include contacting the device manufacturer. The security of medical devices should be addressed from the time the medical provider contracts to purchase the device. Obtain information from the manufacturer regarding the security of the device, such as the Manufacturer Disclosure Statement for Medical Device Security.

Prepare Now for Critical Device Security Incidents

Hospitals and health systems are increasingly dependent on sophisticated medical devices for patient care and maintaining safety, but not all are ready to respond effectively when hackers access those devices. Risk managers should ensure an effective response plan is in place that is well practiced and ready to deploy at a moment’s notice.

Articles Tagged With: cyberattacks