Assessments: Cyber Resilience Review (CRR)

Posted on January 10, 2019June 14, 2019 by Alex Konstantinovsky

The CRR is a no-cost, voluntary, non-technical assessment to evaluate an organization’s operational resilience and cybersecurity practices. The CRR may be conducted as a self-assessment or as an on-site assessment facilitated by DHS cybersecurity professionals. The CRR assesses enterprise programs and practices across a range of ten domains including risk management, incident management, service continuity, and others. The assessment is designed to measure existing organizational resilience as well as provide a gap analysis for improvement based on recognized best practices.

Continue reading→

Cyber security predictions 2019: Watch for these four important Canadian privacy reports

Posted on January 10, 2019June 10, 2019 by Alex Konstantinovsky

The cyber security record book has closed on 2018, and what a ghastly year it was.

Continue reading→

Center for Connected Medicine polls top health systems about 2019 priorities

Posted on November 20, 2018June 10, 2019 by Alex Konstantinovsky

Cybersecurity is still the big one. But interoperability and telehealth are not far behind for leading organizations’ technology goals.

Continue reading→

The biggest healthcare data breaches of 2018 (so far)

Posted on October 10, 2018June 10, 2019 by Alex Konstantinovsky

Healthcare IT News October 2018 Healthcare continued to be a lucrative target for hackers in 2017 with weaponized ransomware, misconfigured cloud storage buckets and phishing emails dominating the year. In 2018, these threats will continue and cybercriminals will likely get more creative despite better awareness among healthcare organizations at the executive level for the funding needed to protect themselves. This collection highlights […]

Continue reading→

Ryuk ransomware strikes at least four organizations in Canada

Posted on October 10, 2018June 10, 2019 by Alex Konstantinovsky

A new strain of ransomware first reported in August is now being seen in Canada, hitting at least four organizations here.

“I’m starting to see a certain type of ransomware called Ryuk targeting healthcare organizations,” Canadian cyber security lawyer Imrad Ahmad told IT World Canada on Tuesday. “Typically ransomware locks up your system. This one actually exfiltrates data” as well.

Continue reading→

Malware hits medical devices at 18 percent of healthcare orgs in last year

Posted on October 5, 2018June 14, 2019 by Alex Konstantinovsky

A new CHIME-KLAS survey of CIOs, CISOs and other security leaders finds that few are confident in their ability to protect patient safety and prevent disruptions from cybercriminals.

Continue reading→

Ransomware in Healthcare Facilities: A Harbinger of the Future?

Posted on August 14, 2018June 14, 2019 by Alex Konstantinovsky

Cybercriminals have begun to target the healthcare industry with ransomware, malware that encrypts an infected device and any attached devices or network drives. After encryption, cybercriminals demand a ransom before releasing the devices from encoding. Without adequate disaster recovery and backup plans, many businesses are forced to pay the ransom. We examined the extent of recent ransomware infections in healthcare settings, the risk liabilities and costs associated with such infections, and possible risk mitigation tactics.

Continue reading→

142 healthcare data breaches in Q2, 30% caused by repeat offenders

Posted on August 9, 2018June 14, 2019 by Alex Konstantinovsky

More than 3 million patient records were breached between April and June, highlighting an even bigger issue: Risk increases over time without proper education or reporting.

Continue reading→

Still underinvesting in cybersecurity? It’ll cost you $408 per patient record

Posted on July 13, 2018June 14, 2019 by Alex Konstantinovsky

A breach in financial services, the second most expensive sector, costs only half of what hospitals wind up spending.

Continue reading→

Cybersecurity: Nightmare scenarios and guiding principles

Posted on May 11, 2018June 14, 2019 by Alex Konstantinovsky

From legacy infrastructure to potential medical device hacks, some of the industry’s leading voices opened up about how the industry can begin to combat the inevitable breach.

Continue reading→