Post Topic: Hacking Healthcare

This week, Hacking Healthcare takes a look at a study recently published in the Journal of the American Medical Association (JAMA) that sought to understand the wider impact that cyberattacks have on regional healthcare facilities adjacent to the actual victim. The study appears to confirm what many Health-ISAC members already know: The impacts of cyberattacks radiate outward, and the harm they cause is likely not fully understood.

This week, Hacking Healthcare provides an overview of a new U.S. Senate bill that purports to address the cybersecurity barriers affecting rural hospitals. We examine what the provisions of the bill call for, assess the likelihood of it making a significant positive impact, and then place it within the larger conversation on critical infrastructure cybersecurity that is currently taking place in the United States.

This week, Hacking Healthcare begins with a guest essay on advancing business, operational, and financial alignment to cybersecurity threats, which ties into the Securities and Exchange Commission’s recently proposed cybersecurity rule requirements. Next, we provide an update on the newest developments surrounding the NIST Cybersecurity Framework revision.

This week, Hacking Healthcare takes a look at developments in the international community. Specifically, we examine new developments related to the United Nations (U.N.) Cybercrime Treaty and analyze what the healthcare sector should expect from this international process.

This week, Hacking Healthcare takes a look at two new cybersecurity proposals that could have major effects on cyber threat information-sharing across the European Union (EU), as well as on incident response and recovery for critical sectors like healthcare, and for healthcare entities that use managed security service providers.

This week, Hacking Healthcare examines new CISA guidance on secure-by-design/default, which received significant international support but left some in the private sector frustrated by the approach. Next, we break down three new, free cybersecurity resources published by the Department of Health and Human Services (HHS) that could help Health-ISAC members of all shapes and sizes.

This week, Hacking Healthcare provides an update on the FDA’s implementation of cybersecurity requirements for medical devices that were outlined in the 2023 Consolidated Appropriations Act. Next, we take another look at supply chain security as another significant incident pushes the issue back into the headlines.

This week, Hacking Healthcare examines a politically motivated healthcare sector cyberattack to investigate both hacktivists and the potential necessity of healthcare entities to weigh high-profile patient data in their risk assessments. Next, we give you the heads-up on the Biden administration’s attempts to ease the cybersecurity regulatory burden through harmonization.