How to Build a Resilient Ransomware Defense Program in Healthcare
Ransomware attacks on health care institutions are attacks on people. System outages can block access to medication lists, x-rays or other imagery that doctors rely on to provide both routine and urgent care. In fact, an independent study published in February 2026 by the American Economic Journal: Economic Policy found that “Among patients already admitted […]
CISO Brief, March 2026: Geopolitical Tensions and Cyber Vigilance
Operational resilience is being tested at the seams. As we head into March, we continue to see the risk environment being defined through AI adoption pressures, emergency patching realities, and nation-state–aligned actors targeting critical infrastructure. Under the backdrop of increased geopolitical tensions with Iran, this month’s brief will discuss improving resilience through cyber vigilance and […]
CISO Brief: 7 Healthcare Cybersecurity Predictions for 2026
In 2026, healthcare cybersecurity is shifting from reacting to crises toward building resilience that endures. Innovation, regulation, and collaboration are accelerating, and healthcare leaders across the sector are meeting this moment with renewed clarity and purpose. These seven healthcare cybersecurity predictions reflect how our industry is defending smarter, working together more intentionally, and rethinking what […]
CISO Brief: A Look Back at Healthcare Cybersecurity in 2025, A Year Defined by Disruption
As 2025 comes to a close, it’s impossible not to view the year through a wide-angle lens. Healthcare cybersecurity in 2025 did not follow a clean, predictable arc. Instead, it delivered a series of sharp turns, unexpected pivots, and both hard-earned wins and hard-learned lessons. If 2024 felt volatile, 2025 reaffirmed that volatility is now the default operating […]
Strategies for Strengthening Cybersecurity Programs
Maturing cybersecurity programs leverage a range of best practices. We take a closer look at these in the new Fortified webinar and panel discussion “Cyber Risk, Budgets, and Patient Safety” hosted by Senior vCISO Tamra Durfee. Joining Tamra on the panel discussion are Ann Wright, director of IT and informatics at Ortho Nebraska, and Erin […]
Lessons From the Front Lines: How One Hospital Survived 30 Days Offline
For healthcare leaders, there’s no good time for a cyberattack, but they’re especially aggravating when they hit while you’re on vacation. That’s what happened to Katrina Brown, chief nursing officer of Providence Hospital in Mobile, Alabama, when the EMR system and other software went down while she was in Hawaii. The Response Strategy: Taking Quick […]
Why a Risk Assessment is the First Step Toward Cyber Resilience in Healthcare
Knowing where to begin. That’s the biggest challenge most healthcare leaders face when it comes to maturing their cybersecurity programs. From HIPAA requirements to NIST frameworks, the regulations and risks can feel overwhelming. That’s why a risk assessment is often the smartest first step. The Problem to Solve Healthcare organizations are required to conduct periodic […]
The 2025 Horizon Report: Your Roadmap to Cybersecurity Resilience
The healthcare industry is under siege. As we move into 2025, the cybersecurity challenges facing hospitals, health systems, and vendors are growing more complex, more sophisticated, and more frequent. The stakes have never been higher; patient safety, operational continuity, and trust hang in the balance. Cybercriminals are evolving their strategies, leveraging advanced technologies like artificial […]
Supporting HHS’s Renewed Focus on Cybersecurity in Healthcare
At Fortified Health Security, we are encouraged by the Department of Health and Human Services’ (HHS) continued commitment to advancing cybersecurity across the healthcare sector. The proposed updates to the HIPAA Security Rule represent a significant step forward, ensuring providers adopt best-practice measures proven to protect healthcare networks against evolving cyber threats. As demonstrated by […]
Cybersecurity Awareness Month: Keeping Healthcare Healthy
As October ends, Cybersecurity Awareness Month reminds us of the crucial opportunity for individuals and organizations to deepen their understanding of cybersecurity and proactively secure their digital environments. In healthcare, where sensitive patient data and critical systems are persistently at risk, this focus is essential. The Importance of Cybersecurity in Healthcare Healthcare organizations are particularly […]