H-ISAC Hacking Healthcare 9-10-19

TLP White: This edition of Hacking Healthcare will explore the topic of cyber insurance. We will briefly discuss what cyber insurance is, what it may or may not cover, why cyber insurance lacks standardization, and what growing pains this industry is working through.

As a reminder, this is the public version of the Hacking Healthcare blog. For additional in-depth analysis and opinion, become a member of H-ISAC and receive the TLP Amber version of this blog (available in the Member Portal.)

read more…

H-ISAC Hacking Healthcare 9-3-19

TLP White: In this edition of Hacking Healthcare, we explore how the fallout of Facebook’s privacy issues may impact healthcare organizations. We then brief you on NIST’s new initiative to secure telehealth. Finally, we examine how Pinterest took a different route from Facebook and YouTube when faced the dilemma of medical misinformation.

As a reminder, the public version of the Hacking Healthcare blog is posted on our website each week. Additional in-depth analysis and opinion is available to H-ISAC members in the TLP Amber version of Hacking Healthcare; however, we decided to make the member version of this week’s information available to all.

read more…

H-ISAC Hacking Healthcare 8-27-19

TLP White: In this edition of Hacking Healthcare, we continue the discussion on biometric data by looking at an Australian wrongful dismissal case. We then brief you on the curious plight of a healthcare organization’s stolen domain. Next, we explore the possible ramifications of a Georgia Supreme Court case on data breach compensation.  Finally, we look at two new cases of supply chain attack on the open source community.

As a reminder, this is the public version of the Hacking Healthcare blog. For additional in-depth analysis and opinion, become a member of H-ISAC and receive the TLP Amber version of this blog (available in the Member Portal.)

read more…

H-ISAC Hacking Healthcare 8-20-19

TLP White: In this edition of Hacking Healthcare, we take a look at the BioStar breach and its potential repercussions for biometric data.  We then detail the partnership between the Defense Information Systems Agency and (DISA) and The Department of Health and Human Services (HHS) in creating a behavioral-based identity technology. Finally, we look at how the ever expanding network landscape is impacting hospital security teams and why the increase in application threat hunting isn’t necessarily improving healthcare security.

As a reminder, this is the public version of the Hacking Healthcare blog. For additional in-depth analysis and opinion, become a member of H-ISAC and receive the TLP Amber version of this blog (available in the Member Portal.)

read more…

H-ISAC Hacking Healthcare 8-13-19

TLP White: In this edition of Hacking Healthcare, we take a look at how medical device cybersecurity is increasingly generating interest.  We then give you a breakdown of the UK’s massive bet on A.I. in healthcare. Finally, we explore the Department of Defense’s interest in the Zero Trust model of cybersecurity and why you might be interested.

As a reminder, this is the public version of the Hacking Healthcare blog. For additional in-depth analysis and opinion, become a member of H-ISAC and receive the TLP Amber version of this blog (available in the Member Portal.)

read more…

H-ISAC Hacking Healthcare 8-6-19

TLP White: In this edition of Hacking Healthcare, we take a look at the ever-growing world of cyber insurance.  We then reinforce the need to pay attention to the basics of cyber security (again). Finally, we look at how the adoption of new healthcare technologies is coming into conflict with data privacy and security concerns.

As a reminder, this is the public version of the Hacking Healthcare blog. For additional in-depth analysis and opinion, become a member of H-ISAC and receive the TLP Amber version of this blog (available in the Member Portal.)

read more…

H-ISAC Hacking Healthcare 7-30-19

#NSA #CybersecurityDirectorate #BugBounty #databreach #HSCC #GHIDRA #Google #Android #HackerOne

TLP White: In this edition of Hacking Healthcare, we take another look at training and retaining your cybersecurity workforce.  We explore the NSA’s announcement of their new Cybersecurity Directorate.  Next, we look at the growing business of bug bounties.  Finally, we examine the high cost of data breaches in the healthcare industry.

As a reminder, this is the public version of the Hacking Healthcare blog. For additional in-depth analysis and opinion, become a member of H-ISAC and receive the TLP Amber version of this blog (available in the Member Portal.)

read more…

H-ISAC Hacking Healthcare blog 7-23-19

TLP White: In this edition of Hacking Healthcare, we catch up on the still developing Bulgarian data breach affecting the country’s entire population.  Next, we look at how Massachusetts is trying to close the skills gap for tech savvy personnel.  Finally, we examine cybersecurity overconfidence in the healthcare sector.

As a reminder, this is the public version of the Hacking Healthcare blog. For additional in-depth analysis and opinion, become a member of H-ISAC and receive the TLP Amber version of this blog (available in the Member Portal.)

read more…

H-ISAC Hacking Healthcare 7-16-19

#Alexa, #Cloud, State Cyber Resiliency Act

TLP White: In this edition of Hacking Healthcare, we discuss a unique partnership between Alexa and the UK’s National Health Service.  We then check in on resistance to Cloud adoption in the Healthcare industry. Finally, we examine the lack of sufficient cybersecurity at the state level and what is being done to improve it.

As a reminder, this is the public version of the Hacking Healthcare blog. For additional in-depth analysis and opinion, become a member of H-ISAC and receive the TLP Amber version of this blog (available in the Member Portal.)

read more…

H-ISAC Hacking Healthcare 7-9-19

Adversarial #phishing kits, #BGP internet infrastructure and ransomware infecting cities and towns of all sizes.

 

TLP White: In this edition of Hacking Healthcare, we discuss the growth of Phishing-as-a-Service.  We then check in on how decades old internet infrastructure is fueling security concerns and internet outages. Finally, we examine the worrying trend of ransomware infecting cities in towns across the United States, and what that might mean for the future.

As a reminder, this is the public version of the Hacking Healthcare blog. For additional in-depth analysis and opinion, become a member of H-ISAC and receive the TLP Amber version of this blog (available in the Member Portal.)

 

Welcome back to Hacking Healthcare.

read more…