Garrett Cathey’s Post

Preventing the Next Big Cyberattack on U.S. Health Care https://lnkd.in/gANAw--V #healthcareIT #cybersecurity #digitalprivacy #cyberattack #security #safety #finance #healthsystems #technology

Congratulations Erik Decker, John Glaser, and Janet Guptill, FACHE, CPHIMS on your Harvard Business Review article, Preventing the Next Big Cyberattack on U.S. Healthcare. The article recommends five actions to improve the protection of the health care ecosystem: 1. Establish a baseline of core practices. 2. Identify and protect risky connections. 3. Identify convergences of materiality and high risk and improve resilience to recover. 4. Improve detection of attacks and the sharing of information when they occur. 5. Establish government oversight and formal recognition of critical organizations. "The path to getting the health care sector from “critical to stable condition” by 2029 has been outlined in the five-year cybersecurity strategic plan produced by the Health Sector Coordinating Council - Cybersecurity. The members of the health care sector should take their lead from Chris Inglis, the first national cyber director, whose philosophy is: “You must beat all of us … to beat one of us.”" #riskneversleeps Censinet https://lnkd.in/eaF2gYbz

The cyberattack on Change Healthcare that devastated the U.S. #HealthCare sector made painfully clear that much more needs to be done to address vulnerabilities. Here are 5 actions to improve #Cybersecurity. #HealthTech #DigitalTransformation

https://lnkd.in/gxFAVxG7 The #cyberattack on Change Healthcare that devastated the U.S. #healthcare sector made painfully clear that much more needs to be done to address vulnerabilities that exist throughout the ecosystem. This article offers five actions that can go a long way to improving #cybersecurity throughout the sector and make it much more resilient. #himss #isaca #hbr

Cybersecurity is an essential element to any Healthcare Compliance Program. Healthcare organizations must take proactive steps to adopt stringent cybersecurity policies to protect their business. #hipaa #HealthcareCompliance 🔔 Don’t miss any of our HIPAA & Compliance posts, tips, or insights. Click the bell underneath the banner on the right-hand side to get notified as soon as we publish!

🏥 Don't Underestimate Simple: Cyberattacks on Hospitals Explained 🏥 Cyberattacks on hospitals might seem like intricate schemes from high-tech villains, but the reality is often much simpler. While the attackers' methods may not be complex, the consequences for patients and staff can be devastating. Let's break it down with the 5 Ws: Who attacks hospitals? 😈Organized hacking groups😈. These are coordinated efforts, with different groups specializing in different parts of the attack. One group might breach the system, while another extracts and sells the data. What is their motive? 🤑Money🤑. It's all about the financial gain. While some might imagine targeted patient harm, the evidence overwhelmingly points to financial motives. When do they attack? 🕰Always🕰. Hospitals are 24/7 operations, offering attackers a constant target rich with valuable data and often lacking robust defenses. Where are they focused? 🗂Data and Cash💸. Developed nations with highly connected environments, large digital patient data sets, and the ability to pay ransoms are prime targets. The US and Europe are hotspots. Why are they focused on healthcare? 🎇Bang for the Buck🎇. Despite the high value of patient data and the willingness to pay ransoms, healthcare lags behind other industries in cybersecurity. This makes them low-effort, high-reward targets for attackers. How do they execute attacks? 🐠Simply and Effectively🤓. Phishing emails and social engineering are common entry points. Attackers then escalate privileges, expand their reach, exploit known vulnerabilities, and ultimately steal and/or encrypt data. This all happened in 9 days during the recent Change Healthcare attack, resulting in some of the attackers receiving a $22M ransom payment. Fortunately, a recent Harvard Business Review article, "Preventing the Next Big Cyberattack on U.S. Health Care", outlines 5 crucial actions for our industry to take. These actions, ranging from baseline security measures to enhanced attack detection, provide invaluable guidance towards a more secure future. But how do we implement these actions? The Cynerio team is here to help! We offer expertise in advancing protections throughout the healthcare industry. Let's work together to strengthen healthcare defenses and keep patients safe. #healthcare #cybersecurity #patientsafety #cynerio

Securing U.S. health care: pivotal steps to fortify cybersecurity. Insights on safeguarding against future cyber threats. Learn crucial strategies for resilience and protection. Empowerment through proactive measures. Strengthening defenses for a resilient future. https://lnkd.in/gw6JvvfQ #CyberSecurity #HealthCare #Resilience #Protection #CyberThreats #Prevention #Safety #DigitalHealth

Securing U.S. health care: pivotal steps to fortify cybersecurity. Insights on safeguarding against future cyber threats. Learn crucial strategies for resilience and protection. Empowerment through proactive measures. Strengthening defenses for a resilient future. https://lnkd.in/g3baGvRV #CyberSecurity #HealthCare #Resilience #Protection #CyberThreats #Prevention #Safety #DigitalHealth

Cybersecurity often takes a backseat to financial and operational priorities. Yet, the costs of this oversight—financially and in terms of reputational damage—can far surpass the expenses of establishing strong security measures like multifactor authentication. When companies overlook this, they jeopardize their data integrity and business continuity, exposing an entire ecosystem to potential risks. It's crucial to prioritize robust cybersecurity frameworks that protect patient data and bolster our healthcare services' resilience against future threats. This includes integrating stringent cybersecurity assessments into the M&A due diligence process. Additionally, promoting industry-wide collaboration to share real-time threat intelligence is essential in preventing future attacks. These steps are key to strengthening defenses, maintaining trust, and ensuring the organization's long-term health. https://lnkd.in/gFWqUdmR #CyberSecurity #MnA #DigitalHealthSafety

I'm keenly aware of our industry's unprecedented cyber threats, highlighted by the recent ransomware attack on Change Healthcare. This incident underscored the critical need for a comprehensive cybersecurity strategy that addresses the interconnected nature of our ecosystem. By establishing baseline security practices, identifying and protecting risky connections, and improving detection and information sharing, we can enhance our resilience against cyber threats. Government oversight and formal recognition of critical organizations are also essential steps toward bolstering our collective defenses. We must heed the call to action outlined in the five-year cybersecurity strategic plan and unite in our commitment to safeguarding patient data and preserving the integrity of our healthcare infrastructure. #Healthcare #Cybersecurity #Privacy