
Health-ISAC Hacking Healthcare 1-12-2023
Happy New Year! To kick off 2023, Hacking Healthcare begins by examining an end of year ransomware attack against a Canadian children’s hospital. Beyond assessing the unique aspects of the attack, such as why a notorious ransomware group apologized and offered a free...
Health-ISAC Hacking Healthcare 12-22-2022
Happy Holidays from Hacking Healthcare Everyone involved in Hacking Healthcare would like to wish you all a happy holiday season and thank you for another great year. We will be taking next week off for the holidays, but we will be back in January. This week,...
Health-ISAC Hacking Healthcare 12-15-2022
This week, Hacking Healthcare begins with a reminder for next week’s Health-ISAC Monthly Threat Brief. Next, we use the upcoming end of life for Windows 7 and 8 to frame a conversation about legacy technology in the healthcare sector. This includes breaking down...
Health-ISAC Hacking Healthcare 12-8-2022
This week, Hacking Healthcare begins by examining a new notice of proposed rulemaking by HHS that asks stakeholders to provide feedback on the implementation of part of the Coronavirus Aid, Relief, and Economic Security (CARES) Act. The mental-health focused proposed...
Health-ISAC Hacking Healthcare 12-1-2022
This week, Hacking Healthcare begins by examining Australia’s recent decision to deploy further active, offensive cyber measures, or "hack back", through its new cyber task force. We attempt to understand how this may catalyze other governments to embrace a more...
Health-ISAC Hacking Healthcare 11-21-2022
This week, we dive into the European Union Agency for Cybersecurity (ENISA) Threat Landscape (ETL) report to bring you the EU perspective on what has been going on in the cyber threat landscape from the middle of 2021 to the middle of 2022. We pick out some of...
Health-ISAC Hacking Healthcare 11-10-2022
TLP White This week, Hacking Healthcare examines what to make of the White House’s second annual summit on combating ransomware. We briefly recount why the summit came to be, what it accomplished in year one, and how commitments in year two might positively impact the...
Health-ISAC Hacking Healthcare 11-2-2022
TLP White This week, Hacking Healthcare dives into a recent regulatory fine against a large UK organization for General Data Protection Regulation (“GDPR”) violations. We provide a breakdown of the regulator’s report and the enormous fine it levied, and we extract...
Health-ISAC Hacking Healthcare 10-26-2022
October 26, 2022 TLP White This week, Hacking Healthcare focuses its attention on what the outcome of the Joseph Sullivan court case might mean for executive liability, the use of bug bounty programs, payments to malicious actors, and incident reporting. In addition...
Health-ISAC Hacking Healthcare 10-19-22
TLP White This week, Hacking Healthcare begins with a brief run through of a new guidance document on supply chain security from the UK’s National Cyber Security Centre (NCSC) that coincides with an uptick in supply chain attacks. Next, we summarize a significant...