Monthly Newsletter – June, 2025

June Newsletter highlights:

• Spring Americas Summit recap and photos
• European Summit registration discount for Members
• CISO Summit waiting list
• Melbourne Workshop waiting list
• Welcome new Navigator, GitGuardian
• Strengthening medical device security – an update
• Upcoming workshops, webinars, and summits

2025 June Newsletter Final
Size : 5.3 MB Format : PDF

2025 June Newsletter text

Creating Safe Harbors – It’s a wrap!

North Korean fake IT worker threats, CISO challenges, AI, and more were among the hot topics covered at the 2025 Spring Americas Summit. Attendees had their eyes opened to the impacts posed by the weather and atmospheric pressure by amazing Keynote, Sunny Westcott, and heard about opportunities and challenges in the life of a CISO during the popular CISO Phish Bowl Panel.

Everyone enjoyed the networking and activities, including a special night at Ngala Wildlife Preserve where they got close encounters with Coulter the Giraffe, Walter the Rhinoceros, and Ringo the Camel.

An attendee on LinkedIn: “The open and collaborative environment highlighted that we’re all navigating similar challenges and striving toward common goals. I returned with valuable insights and practical guidance to share with my team, colleagues, and organization.”

Next year’s Spring Americas Summit is in Tampa, Florida, May 4-8, 2026.

Watch the Summit wrap-up video. https://vimeo.com/1088442596?share=copy

Congratulations to the 2025 Routhy Award Winner!

Nitin Natarajan was recognized for his outstanding commitment to public health and cybersecurity. This year’s award was presented by its namesake, Jim Routh.

Photo highlights: Keynote Sunny Wescott, Ngala Evening Event, the CISO Phish Bowl panel, the Cyber Threat Intelligence Training group, and Nitin Natarjan receiving the Routhy Award,

EUROPEAN SUMMIT – All Roads Lead to Rome, October 14-16, 2025

Members can register for only US$99 until August 31^st!
Register here. https://health-isac.org/summit-meeting/2025-european/

CISO SUMMIT

September’s CISO Summit is at capacity!
Join the waiting list to hear keynote speaker Siri Nelson, CEO of Marshall Medical Center and to gain key insights into managing the pressures of leadership from Cybermindz.

WORKSHOP

Melbourne, Australia – At Capacity!

Hosted at the Victoria Department of Health

Join the waiting list.https://portal.h-isac.org/s/community-event?id=a1YVn000003Ms1dMAC

Agenda highlights:

• 2025 Update & Current Threats
• Victorian Health Sector Cyber Security Program Strategy Refresh
• Strategic Environment & Threats to Critical Infrastructure with the Office of National Intelligence, Australian Government
• AI Regulation and Software as a Medical Device, Australian DHDA
• Guarding the Frontlines: Building a Cyber Resilient Hospital
• Discussion exercise for a medical device cyber incident

NEW NAVIGATOR – GITGUARDIAN

GitGuardian, who recently became a Health-ISAC Navigator Sponsor, protects organizations against leaked secrets and mismanaged identities.

GitGuardian offers end-to-end solutions for secrets detection in code, productivity tools and enterprise environments. Health-ISAC members get an exclusive Complimentary Enterprise Starter license, up to 100 developers by registering here.

STRENGTHENING MEDICAL DEVICE SECURITY

A recent analysis by Health-ISAC identified vulnerabilities actively exploited in 12 medical devices from five manufacturers—issues not tracked by issuing government agencies. Some of these flaws have existed for years, highlighting the urgent need for timely patching and proactive security.

To help members stay ahead of threats, Health-ISAC now shares medical device alerts through the Healthcare Threat Information Portal (HTIP), with 59 Medical Device Advisories published so far. Non-actionable issues are shared in a secure member Slack channel and a new clinical software channel to raise awareness of risks affecting critical systems.

The Medical Device Security Community (MDSC) brings together over 500 participants from 156 organizations across 140 countries. Health-ISAC also launched a Western Pacific chapter to foster regional collaboration and advance medical device security.

UPCOMING WORKSHOPS

Mark your calendars for these upcoming workshops:

June 26 – 2025 Americas Hobby Exercise, hosted at Venable, Washington, D.C.

July 29 – Health Sector Security Workshop and Tabletop Exercise, hosted at University of Washington Medicine, Seattle, WA.

September 9 – Health Sector Security Workshop, hosted at Albert Einstein Hospital, Morumbi, São Paulo.

2026 APAC SUMMIT – BALI

Cultivating Resilience, March 10-12, 2026

Call for Papers closes soon! Submit an abstract here.

2025 FALL AMERICAS SUMMIT – CARLSBAD, CA

Mission Driven, December 1-5, 2025

Call for Papers closes July 11! Submit an abstract here.

OTHER UPCOMING EVENTS

June 5 – Fórum de Cyber Segurança para o setor da saúde, Speaker: Errol Weiss, Health-ISAC CSO

June 13 – Cybersecurity for Medical Instruments 2025, Health-ISAC President and CEO speaking in Yokohama Japan

June 17 – Weird Healthcare CVEs Are Afoot, Navigator webinar by VulnCheck

June 25 – Mastering EU and FDA Cybersecurity Requirements for Medical Devices, Navigator webinar by Medcrypt

June 25  – European Monthly Threat Briefing

June 26 – Engaging Talks and Contributions with Community Services

• Related Resources & News
• What Healthcare Leaders Need to Know About Cybersecurity in 2026-2027
• What Trump’s AI Executive Order Means for Healthcare Sector
• Health Care and Social Assistance Threat Landscape Report
• Agentic AI in Healthcare Is a Risky Proposition
• Live@eXchange Day 2 – Health-ISAC Medical Device Security Analyst
• Health-ISAC Hacking Healthcare 6-3-2026
• New Vulnerabilities Aimed at Healthcare Industry
• Monthly Newsletter – June 2026
• What it really takes to Secure Healthcare
• Device Inventory and PHI Mapping Will Be the Heaviest Lifts When New HIPAA Drops