Monthly Newsletter – September 2023

September’s Newsletter features:

• European Summit –Only one month away!  Early Bird Discount available until September 15
• European Hobby Exercise – After Action Report now available
• European Cyber Threat Landscape Tour – Coming to Berlin in September.  Other locations are also listed.  Don’t miss out!
• Fall Americas Summit -Registration open … Early Bird Pricing available
• New Community Services Offering -AppOmni
• Workshops – To be held in New York and Michigan

Pdf version:

View PDF

Text version:

EUROPEAN SUMMIT – GATEWAY TO SECURITY

Only a Month Away!

Register today to enjoy Early Bird savings through September 15 and stay on site at the seaside Sheraton Dubrovnik Riviera! Do not wait for the September 29 cut-off date.

Plan your travel so you can attend the Pre-Summit workshop, The Art of Continuous Maturity, lead by Google Cloud. Make sure you select that Workshop when you register to secure your seat!

3 Reasons to Register Today!

Bonus Workshop

Continuous Maturity
Learn how to establish and deploy best in class Security Monitoring Operations to meet and surpass Compliance & Regulatory requirements.

Keynote Speaker

Responsible Artificial Intelligence (RAI)
Geoff Schaefer, the Chief Technologist at Booz Allen Hamilton, will delve into emerging policies and regulations around the need for RAI.

Special Event
Franciscan Monastery
Tour a Gothic-style Franciscan Monastery and centuries-old pharmacy. This will be a memorable dining and networking event.

Inaugural Securitas Award
Who Will Win the First Annual Securitas Award in October?

Much like the protective Goddess of the same name, the Securitas Award goes to the person(s) who is a champion of collaboration and information sharing to protect the  Health Sector in Europe. Health-ISAC eagerly anticipates presenting the award at the European Summit.

HOBBY EXERCISE AFTER-ACTION REPORT

The after-action report from April’s inaugural European Hobby Exercise can be found in Health-ISAC’s Threat Intelligence Portal Document Library.
Organizations can use this document to identify areas for improvement.

EUROPEAN CYBER THREAT LANDSCAPE TOUR

Join Health-ISAC and fellow Healthcare Organizations for a Free Lunch and Networking Event.
Health-ISAC’s European Cyber Threat Landscape Tour is for CISOs, CIOs, Security Analysts.
Learn About NIS2, Ransomware, Incident Response, Information & Vulnerability Sharing
Register today _gl=1*jypcrw*_ga*OTUwNTA1NzU4LjE2OTQwMTA4OTA.*_ga_MK7FQHQQYD*MTY5NDAxMDg4OS4xLjAuMTY5NDAxMDg4OS42MC4wLjA.*_ga_GLMMP3PZZT*MTY5NDAxMDg5MC4xLjAuMTY5NDAxMDg5MC42MC4wLjA.&_ga=2.175082466.1508503016.1694010890-950505758.1694010890

Upcoming dates and locations:

21 September – Berlin, Germany

3 October Lisbon, Portugal

4 October – Barcelona, Spain

5 October – Madrid, Spain

12 October Prague, Czech Republic

13 October – Vienna, Austria

Cyber and Physical Security Events from September

Colorado Health Agency Says 4 Million Impacted by MOVEit Hack

File Sharing Site Anonfiles Shuts Down Due to Overwhelming Abuse

Incident Response Lessons Learned from the Russian Attack on Viasat

Google Introduces First Quantum Resilient FIDO2 Security Key

Interpol Takes Down 16shop Phishing-as-a-Service Platform

Ivanti Zero-Day Exploited by APT Since at Least April in Norwegian Government Attack

West Atlantic: Atlantic Could Heat Up With Frenzy Of Tropical Activity

United States: People Jump Into The Ocean To Flee Maui Wildfires As Patients Overwhelm Hospitals And 911 Gets Cut Off

United Kingdom: Junior Doctors Employed By National Health Service To Strike Nationwide Aug. 11-15

United States: Two Hospital Workers Steal Over $178K In Medical Supplies

FALL AMERICAS SUMMIT

S’More Sharing with Health-ISAC

Registration is Open!

Register today with early bird pricing of just US $200 per person. Includes full Summit access, meals, and special events (a value of over $1500). Take advantage of the generous on-site hotel group rate quickly – rooms sell out fast!  The link to reserve your room will be included in your registration confirmation email.

Rodeo Camp-Out!

Dust off your dungarees for Wednesday evening’s Texas Rodeo and fireworks at Knibbe Ranch, a 5th generation actual working ranch.

APPOMNI JOINS COMMUNITY SERVICES

AppOmni is offering Members a free risk assessment of a Salesforce or ServiceNow SaaS instance to provide visibility into key misconfigurations, user permissions, data exposures, and SaaS-to-SaaS connections.

Learn more about exclusive Member services: https://h-isac.org/community-services/

RESOURCES

WHITEPAPER:

Exploitable Vulnerabilities That Expose Healthcare Facilities Surged Nearly 60% Since 2022, New Research Report Finds

https://h-isac.org/2023-state-of-cybersecurity-for-medical-devices-and-healthcare-systems/

PODCAST:

Hammerdown Podcast Season II | Episode IX With Phil Englert From Health-ISAC

UPCOMING WORKSHOPS IN NEW YORK AND MICHIGAN

September 20 – Healthcare Cybersecurity and Legal Workshop

Held at Mt. Sinai Health System, NY. Includes a tabletop exercise. Sponsored by Flare.
Register today https://portal.h-isac.org/s/community-event?id=a1Y7V00000VJ2DzUAL

October 24 – Healthcare Cybersecurity and Third-Party Risk Management Workshop

Held in Ann Arbor, MI. Sponsored by Prevalent.

A full-day, in-person Health-ISAC workshop to discuss the threats and challenges to healthcare organizations as they relate to critical infrastructure, focusing on third-party risk management topics and discussion. The workshop will provide an opportunity for healthcare cybersecurity and third-party risk management professionals to share information, best practices, lessons learned, current threats, and new ideas & solutions with their colleagues and learn from others. The event also provides an opportunity to meet and build relationships with colleagues in the healthcare cybersecurity and third-party risk management ecosystem.

This workshop will also include a tabletop exercise consisting of a fictional scenario of an escalating ransomware attack targeting healthcare entities.

Register today https://portal.h-isac.org/s/community-event?id=a1Y7V00000VJ5QjUAL

MORE UPCOMING EVENTS

September 12    Information Sharing- Sounds like a Good Idea but Where Do I  Start and How Do I Get the Approvals?

CSO Errol Weiss speaking at Copenhagen Cybercrime Conference 2023

September 12    Removing the Fog of War, the ASM Maturity Model every healthcare CISO must be aware of now

A Navigator webinar with Team Cymru

September 13    Unseen Cyber Threats Lurking in Connected Medical Devices

A Navigator webinar with Zimperium

September 14   The FDA ‘Cybersecurity Refuse to Accept Policy’ (RTA) will affect Medical Device Manufacturers!

Navigator webinar with LuxSci

MONTHLY MEMBER EVENTS

September 26 – Member Threat Briefing
Last Tuesday of each month at 12 pm ET

September 28 – ETC webinar

Last Thursday of each month at 12 pm ET

• Related Resources & News
• Leveraging ISO 81001-5-1 Amid Medical Device Procurement
• Mitigating risk as healthcare supply chain attacks prevail
• Enhancing Cybersecurity in Rural Hospitals
• Health-ISAC Hacking Healthcare 11-15-2024
• Cyber Incident Response: Playbook for Medical Product Makers
• Feds Warn of Godzilla Webshell Threats to Health Sector
• Trump’s Return: Impact on Health Sector Cyber, HIPAA Regs
• Health-ISAC Hacking Healthcare 11-7-2024
• Protecting the Healthcare Supply Chain Against Russian Ransomware Attacks
• All hospitals should be concerned about cyberattacks. Here’s why