The CRR is a no-cost, voluntary, non-technical assessment to evaluate an organization’s operational resilience and cybersecurity practices. The CRR may be conducted as a self-assessment or as an on-site assessment facilitated by DHS cybersecurity professionals. The CRR assesses enterprise programs and practices across a range of ten domains including risk management, incident management, service continuity, and others. The assessment is designed to measure existing organizational resilience as well as provide a gap analysis for improvement based on recognized best practices.
Continue readingCategory Archives: Cybersecurity
Informative news about healthcare cybersecurity
Cyber security predictions 2019: Watch for these four important Canadian privacy reports
The cyber security record book has closed on 2018, and what a ghastly year it was.
Continue readingCenter for Connected Medicine polls top health systems about 2019 priorities
Cybersecurity is still the big one. But interoperability and telehealth are not far behind for leading organizations’ technology goals.
Continue readingThe biggest healthcare data breaches of 2018 (so far)
Healthcare IT News October 2018 Healthcare continued to be a lucrative target for hackers in 2017 with weaponized ransomware, misconfigured cloud storage buckets and phishing emails dominating the year. In 2018, these threats will continue and cybercriminals will likely get more creative despite better awareness among healthcare organizations at the executive level for the funding needed to protect themselves. This collection highlights […]
Continue readingRyuk ransomware strikes at least four organizations in Canada
A new strain of ransomware first reported in August is now being seen in Canada, hitting at least four organizations here.
“I’m starting to see a certain type of ransomware called Ryuk targeting healthcare organizations,” Canadian cyber security lawyer Imrad Ahmad told IT World Canada on Tuesday. “Typically ransomware locks up your system. This one actually exfiltrates data” as well.
Continue readingMalware hits medical devices at 18 percent of healthcare orgs in last year
A new CHIME-KLAS survey of CIOs, CISOs and other security leaders finds that few are confident in their ability to protect patient safety and prevent disruptions from cybercriminals.
Continue readingRansomware in Healthcare Facilities: A Harbinger of the Future?
Cybercriminals have begun to target the healthcare industry with ransomware, malware that encrypts an infected device and any attached devices or network drives. After encryption, cybercriminals demand a ransom before releasing the devices from encoding. Without adequate disaster recovery and backup plans, many businesses are forced to pay the ransom. We examined the extent of recent ransomware infections in healthcare settings, the risk liabilities and costs associated with such infections, and possible risk mitigation tactics.
Continue reading142 healthcare data breaches in Q2, 30% caused by repeat offenders
More than 3 million patient records were breached between April and June, highlighting an even bigger issue: Risk increases over time without proper education or reporting.
Continue readingStill underinvesting in cybersecurity? It’ll cost you $408 per patient record
A breach in financial services, the second most expensive sector, costs only half of what hospitals wind up spending.
Continue readingCybersecurity: Nightmare scenarios and guiding principles
From legacy infrastructure to potential medical device hacks, some of the industry’s leading voices opened up about how the industry can begin to combat the inevitable breach.
Continue reading