CISO Brief: Regulatory Update on the 2026 National Cybersecurity Strategy
The 2026 National Cybersecurity Strategy focuses on deterring geopolitical adversaries, protecting critical infrastructure, accelerating global technological leadership, modernizing federal systems and their private-sector partners, simplifying cyber regulations, and strengthening the cyber workforce. One of the more important signals for healthcare is that hospitals are increasingly being discussed alongside the energy grid, water utilities, and other critical […]
February 2026 CISO Brief: Privacy Deadlines, Clinical Impact, and Persistent Attack Paths
As healthcare organizations move closer to the February 16, 2026, compliance deadline for the updated 42 CFR Part 2 requirements, they are doing so in an environment defined by persistent ransomware activity, slow remediation of known exploited vulnerabilities, expanding clinical attack surfaces, and growing use of unmanaged technologies. This month’s Brief focuses on how these […]
CISO Brief: Cybersecurity Awareness Month 2025
Since the start of 2025, the healthcare sector has continued to experience cyber incidents that have disrupted patient care, exposed millions of records, and reshaped organizational thinking about resilience. Cybersecurity Awareness Month is not just about reminding people of risks; it’s about translating real-world events into actionable lessons. Below is a look back at the […]
Rethinking Your Cybersecurity Budget in Tight Times
For any hospital or health system with a 60%+ percentage of Medicare/Medicaid patients, the upcoming cuts authorized in the Big Beautiful Bill will impact you and your cybersecurity budget. But there are proactive steps you can take to prepare for the reductions coming in 2027. That’s the topic explored in detail in the new Fortified […]
Why Unstructured Data Is a Hidden Risk
When most people think about sensitive data, they picture electronic health records (EHRs), financial databases, or other structured systems. Those are important, but they’re not the whole story. The bigger risk for many organizations — especially in healthcare — sits in unstructured data. Think files, folders, spreadsheets, shared drives, emails, SharePoint, Teams, and cloud storage. […]
August 2025 CISO Brief: Policy, Funding, and the Path Forward
How federal staffing cuts, government restructuring, and Medicaid policy shifts threaten the cybersecurity posture of our healthcare system. In a recent set of Questions for the Record (QFRs), Senator Edward Markey highlighted growing vulnerabilities in the cybersecurity infrastructure supporting the U.S. healthcare system. These questions, submitted to the Senate HELP Committee, signal urgent concern over […]
2025 Mid-Year Horizon Report: Why Now Is the Time to Think Differently
Fortified Health Security just released its biannual 2025 Mid-Year Horizon Report, offering a unique view into what is really happening inside cybersecurity at hospitals, healthcare systems, and their extended digital environments. At the midpoint of 2025, we’re seeing healthcare organizations take cybersecurity more seriously, investing in innovative tools and better frameworks; however, some of the […]
Healthcare Cybersecurity Predictions for 2025
As the healthcare industry continues to grapple with evolving cyber threats, Fortified Health Security remains at the forefront of understanding these risks and identifying proactive solutions. In this discussion, Fortified Health Security CEO, Dan L. Dodson and Fortified CISO, Russell Teague analyze the 2025 Horizon Report healthcare cybersecurity predictions –– First with how our 2024 cybersecurity […]
Supporting HHS’s Renewed Focus on Cybersecurity in Healthcare
At Fortified Health Security, we are encouraged by the Department of Health and Human Services’ (HHS) continued commitment to advancing cybersecurity across the healthcare sector. The proposed updates to the HIPAA Security Rule represent a significant step forward, ensuring providers adopt best-practice measures proven to protect healthcare networks against evolving cyber threats. As demonstrated by […]
Cybersecurity Awareness Month: Keeping Healthcare Healthy
As October ends, Cybersecurity Awareness Month reminds us of the crucial opportunity for individuals and organizations to deepen their understanding of cybersecurity and proactively secure their digital environments. In healthcare, where sensitive patient data and critical systems are persistently at risk, this focus is essential. The Importance of Cybersecurity in Healthcare Healthcare organizations are particularly […]