Our Take on Healthcare Tech Since 1997

Assessments: Cyber Resilience Review (CRR)

The CRR is a no-cost, voluntary, non-technical assessment to evaluate an organization’s operational resilience and cybersecurity practices. The CRR may be conducted as a self-assessment or as an on-site assessment facilitated by DHS cybersecurity professionals. The CRR assesses enterprise programs and practices across a range of ten domains including risk management, incident management, service continuity, and others. The assessment is designed to measure existing organizational resilience as well as provide a gap analysis for improvement based on recognized best practices.

Continue reading

The biggest healthcare data breaches of 2018 (so far)

Healthcare IT News October 2018 Healthcare continued to be a lucrative target for hackers in 2017 with weaponized ransomware, misconfigured cloud storage buckets and phishing emails dominating the year. In 2018, these threats will continue and cybercriminals will likely get more creative despite better awareness among healthcare organizations at the executive level for the funding needed to protect themselves. This collection highlights […]

Continue reading

Ryuk ransomware strikes at least four organizations in Canada

A new strain of ransomware first reported in August is now being seen in Canada, hitting at least four organizations here.

“I’m starting to see a certain type of ransomware called Ryuk targeting healthcare organizations,” Canadian cyber security lawyer Imrad Ahmad told IT World Canada on Tuesday. “Typically ransomware locks up your system. This one actually exfiltrates data” as well.

Continue reading

Access to Patient Records “When the Wind Blows”

Its hurricane season, again, and I am reminded of the threat of unplanned downtime occurrences to clinician’s ability to access patient records. “When the wind blows” power outages and disruptions to communication will occur.  What do you need to know? During a hurricane or other natural disasters its essential that hospitals have a modern downtime business continuance program in place […]

Continue reading

Ransomware in Healthcare Facilities: A Harbinger of the Future?

Cybercriminals have begun to target the healthcare industry with ransomware, malware that encrypts an infected device and any attached devices or network drives. After encryption, cybercriminals demand a ransom before releasing the devices from encoding. Without adequate disaster recovery and backup plans, many businesses are forced to pay the ransom. We examined the extent of recent ransomware infections in healthcare settings, the risk liabilities and costs associated with such infections, and possible risk mitigation tactics.

Continue reading