Is “Sorry” Good Enough? Insights from UHG’s Change Healthcare Testimony
On Wednesday, May 1, Andrew Witty, CEO of United Health Group (UHG), appeared before two congressional committees to discuss the recent Change Healthcare Breach. Mr. Witty expressed deep regret for the significant disruption the incident caused throughout the healthcare sector. During his testimony, he provided insight into how the attack happened, evaluated United Health Group’s […]
Navigating Generative AI and Healthcare Cybersecurity
Artificial intelligence (AI) refers to computer systems capable of performing tasks that historically required human intelligence. Generative AI, conversely, can be understood as the “actionable” aspect of AI, where new data can be created to understand and generate human responses rather than using Large Language Models (LLM) to analyze existing data. Think of generative AI […]
Congressional Scrutiny of Healthcare Cyber Risks
On April 16th, healthcare industry leaders gathered in Washington, DC to testify to the Energy and Commerce Health Subcommittee on the topic of “Examining Health Sector Cybersecurity in the Wake of the Change Healthcare Attack.” The insights these leaders shared around the sector-wide risks facing healthcare and the potential steps forward to address them were […]
Choosing the Right MSSP
The “evolving threat landscape” is more than just a ubiquitous cybersecurity term; it represents some of the biggest challenges cybersecurity leaders contend with, especially in healthcare. From increasingly sophisticated and dangerous threat actors, expanding attack surfaces, and competing priorities to budget constraints, fragmented technology, and an often confusing regulatory environment, healthcare cybersecurity is a volatile, […]
Charting a Wellness Plan for Healthcare Cybersecurity
The journey to cybersecurity resilience in healthcare is not a solo endeavor. It requires coordination among several pivotal organizations. At the heart of this collaborative effort is the Health Sector Coordinating Council Cybersecurity Working Group (HSCC CWG), a team designated by the U.S. government as a critical infrastructure advisory council. The HSCC CWG exemplifies a […]
Healthcare Cybersecurity Threats: March 2024
Even though spring has officially sprung, recent Ivanti and Fortinet vulnerabilities have made it feel a bit like Groundhog Day. As we’ve examined the vulnerabilities associated with Ivanti’s Secure Connect and FortiClient solutions over the past few months, it’s become clear that closing the security loopholes has posed significant challenges. While the coverage may start […]
Hidden Signs of a Healthcare Data Breach
Healthcare data breaches can be costly, difficult to resolve, and dangerous for patients. Yet despite the best preventative practices, breaches can still happen, underscoring the critical need for prompt detection and response. As healthcare organizations are responsible for safeguarding private patient data, swiftly identifying signs of a data breach is essential. If such sensitive information […]
13 Things to Know About the New FDA Medical Device Cybersecurity Requirements
Recent changes have gone into effect that give the Food and Drug Administration (FDA) a stately feather in their cap: the authority to require cybersecurity standards for medical devices. However, this increased influence did not happen overnight. Nor did it happen in a vacuum. To unpack how it came about, who is likely to be […]
How Cyber Attacks Impact Patient Trust
When a patient chooses a healthcare organization, they aren’t just trusting them with their physical health; they’re also trusting that healthcare organization with their most sensitive personal information. However, that trust can be undermined if a security breach compromises their data. Unfortunately, cyber attacks against healthcare are on the rise. Over the past decade, theft […]
Healthcare Cybersecurity Threats: February 2024
Since its detection in February, the impact of Change Healthcare’s cyber attack has been staggering. Unfortunately, this is not the only incident that’s impacted healthcare organizations. Several others have sparked urgent calls for updates and heightened vigilance among IT teams, stressing the cyber pressures that constantly confront the healthcare sector. Change Healthcare cyber attack Throughout […]
