The Cybersecurity and Infrastructure Security Agency (CISA) and the Department of Energy issued an advisory about cyberattacks committed via internet-connected uninterruptible power supply (UPS)...
The Biden Administration announced its FY 2023 budget proposal, which contains increased investments in cybersecurity across critical infrastructure.
“The Budget invests in cybersecurity...
The HHS Office for Civil Rights (OCR) announced four HIPAA enforcement actions to hold healthcare providers accountable for potential HIPAA violations. Two of the actions stemmed from OCR’s HIPAA...
Senators Bill Cassidy (R-LA) and Jacky Rosen (D-NV) introduced the bipartisan Healthcare Cybersecurity Act (S.3904), shortly after President Biden warned all critical infrastructure sectors to harden...
The Biden-Harris Administration recently called on all private sector organizations to immediately harden their cyber defenses in preparation for potential Russian cyberattacks.
“My...
The Office for Civil Rights (OCR) issued its quarter one newsletter, containing tips for defending against some of the most common healthcare cyberattacks.
The newsletter stated that healthcare...
The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) released a joint advisory to warn organizations of Russian state-sponsored threat actors who...
As organizations navigate the complexities of the current cyber threat landscape, it is important to take a step back and look at how healthcare cybersecurity has evolved over time. Following this...
Office for Civil Rights (OCR) director Lisa J. Pino urged healthcare organizations to prioritize cybersecurity in 2022 in a recent blog post on HHS’s website. Healthcare data breaches are still...
The Health Sector Cybersecurity Coordination Center (HC3) issued a brief outlining the history and current status of the Log4j vulnerabilities, which known healthcare adversaries are actively...
The Health Sector Cybersecurity Coordination Center (HC3) issued a brief to warn healthcare organizations of Mespinoza, a cybercriminal group known to operate Pysa ransomware. The group has been active...
The Health Sector Cybersecurity Coordination Center (HC3) issued a sector alert outlining severe vulnerabilities associated with Apache Log4j, a common Java framework, which could result in healthcare...
HHS launched a new website for its 405(d) Program with the goal of aligning healthcare cybersecurity across the industry. Under the Cybersecurity Act of 2015, HHS established the 405(d) Aligning Health...
The Health Sector Cybersecurity Coordination Center (HC3) released an alert warning the healthcare sector of Tardigrade malware, a sophisticated strain of malware that was used to attack a vaccine...
The Health Sector Cybersecurity Coordination Center (HC3) issued a threat brief outlining risks and mitigation tactics associated with financially motivated zero-day attacks on the healthcare sector....
HHS’s Health Sector Cybersecurity Coordination Center (HC3) issued a brief warning the healthcare sector of the threat of Cobalt Strike, a remote access tool that was originally created to defend...
HHS’s Health Sector Cybersecurity Coordination Center's (HC3) monthly bulletin alerted the healthcare sector to today’s top healthcare cyber threats and vulnerabilities to watch...
Under the watchful eye of a zero trust security model, no device or user is automatically trusted before being vetted by strict authentication processes. Zero trust is not a single technology or tactic, but a set of cyber defenses that...
The HHS Health Sector Cybersecurity Coordination Center (HC3) released an analyst note outlining the top 10 global and US ransomware threat actors in Q3 2021 who are targeting the healthcare sector....
Blockchain technology is the basis of most cryptocurrencies, but the Health Sector Cybersecurity Coordination Center’s (HC3) latest brief suggested that blockchain has a multitude of useful...