Healing healthcare cybersecurity with ‘whole-of-health’ approach

Retired Gen. Keith Alexander and Premera Blue Cross Chief Information Security Officer Adrian Mayers argue for structural changes organizations can make to address healthcare cyberattacks.

Health-ISAC mention:

A “whole-of-health” approach to cybersecurity complements current efforts by the Health-ISAC, as it adds to the mix both actionable attack intelligence about new and novel threats and a real-time, radar-like picture of the cyber threat landscape.

Link to article in Healthcare Dive:

https://www.healthcaredive.com/news/healing-healthcare-cybersecurity-with-a-whole-of-health-approach/639513/

Published January 4, 2023 by Keith Alexander and Adrian Mayers

With a trove of valuable patient information and low tolerance for downtime, the healthcare sector continues to get hit hard by cyberattackers. Healthcare suffers the highest average cost of a breach for any sector — a figure that has increased 42% since 2020. Now that’s painful.

We can — and must — do better to staunch the impact of relentless cyberattacks on the healthcare sector, especially when most organizations essentially are victims of well-funded cybercrime activity carried out by highly organized cyber criminal outlets and nation-state attackers (e.g., North Korea).

• Related Resources & News
• Potential Terror Threat Targeted at Health Sector – AHA & Health-ISAC Joint Threat Bulletin
• New Cybersecurity Policies Could Protect Patient Health Data
• CyberWire Podcast: PHP flaw sparks global attack wave
• Health-ISAC Hacking Healthcare 3-14-2025
• HSCC Aiming to Identify Healthcare Workflow Chokepoints
• New Healthcare Security Benchmark Highlights Key Investment Priorities and Risks
• Are Efforts to Help Secure Rural Hospitals Doing Any Good?
• CISA cuts $10 million annually from ISAC funding for states amid wider cyber cuts
• 2024 Health-ISAC Discussion Based Exercise Series After-Action Report
• Cobalt Strike takedown effort cuts cracked versions by 80%