CISO and Healthcare - Cyber Security Informer

Healthcare Now Third-Most Targeted Industry for Ransomware

SecureWorld News

NOVEMBER 14, 2024

Ransomware attacks on healthcare organizations have sharply increased in 2024, as shown by recent research from Safety Detectives. Compared to 2023, healthcare providers are facing a higher frequency of ransomware incidents, impacting their ability to deliver essential services and protect sensitive patient data. Louis, Missouri.

Healthcare

Healthcare Ransomware Identity Theft Data breaches

UnitedHealth Confirms 100 Million Affected in Change Healthcare Breach

SecureWorld News

OCTOBER 28, 2024

UnitedHealth Group recently confirmed that a ransomware attack on subsidiary Change Healthcare has compromised the personal information and healthcare data of more than 100 million individuals. In its guidelines on handling data breaches in healthcare, the U.S. Maybe the healthcare industry needs a similar regulation."

Healthcare

Healthcare Insurance Government Data breaches

Why CISA is Warning CISOs About a Breach at Sisense

Krebs on Security

APRIL 11, 2024

New York City based Sisense has more than 1,000 customers across a range of industry verticals, including financial services, telecommunications, healthcare and higher education. ” “We are taking this matter seriously and promptly commenced an investigation,” Dash continued.

CISO

CISO Encryption Telecommunications Financial Services

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Meanwhile, ransomware attacks on healthcare providers will persist, targeting outdated systems and jeopardizing patient care, emphasizing the need for stronger defenses to protect critical services. Alkove Jim Alkove , CEO, Oleria Identity is cybersecurity’s biggest challenge. That’s the easy part. The hard part?

Cyber threats

Cyber threats CISO IoT Phishing

Passwordless Authentication without Secrets!

Thales Cloud Protection & Licensing

OCTOBER 11, 2024

However, industries reliant on shared devices—such as healthcare, retail, and manufacturing—face unique challenges. For example, in healthcare, constant authentication interruptions can impact both patient care and productivity. These fast-paced environments need a more flexible approach to balance security, speed, and user privacy.

Authentication

Authentication Retail Healthcare Manufacturing

Bridging the Security Gaps in Healthcare With Trusted Access

Duo's Security Blog

JUNE 2, 2021

Healthcare organizations (HCOs) face unique security challenges. Securing the healthcare industry is complex. This report Bridging Healthcare Security Gaps: Better Authentication Improves Controls aims to bring clarity and solutions to these security gaps. We take a deep dive into healthcare security gaps and trusted access.

Healthcare

Healthcare CISO Authentication VPN

HHS Mandates Patient Notification After Change Healthcare Data Breach

SecureWorld News

JUNE 5, 2024

Department of Health and Human Services (HHS) has stepped in to ensure patients are made aware if their sensitive data was compromised during February's massive cyberattack on health IT firm Change Healthcare. The unprecedented directive stems from Change Healthcare's business acquisition by UnitedHealth in 2022.

Healthcare

Healthcare Data breaches Identity Theft Insurance

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

The Last Watchdog

DECEMBER 18, 2024

And industries like healthcare face persistent targeting due to their outdated systems and high-value data. Balonis Frank Balonis , CISO, Kiteworks By 2025, 75% of the global population will be protected under privacy laws, including U.S.

Cybersecurity

Cybersecurity CISO Risk Government

Johnson & Johnson CISO Marene Allison: ‘You can’t sit on today’s technology’

CSO Magazine

JULY 15, 2022

“It’s like I raise my hand [in an oath] every morning and the mission is to protect and ensure the viability of my company in the cyber world,” says Allison, who has been the CISO at Johnson & Johnson for more than 12 years. It’s important to understand I’m here to protect this company that is focused on human healthcare.

CISO

CISO Technology Manufacturing Healthcare

Then and Now: Securing Privileged Access Within Healthcare Orgs

Threatpost

JUNE 3, 2021

Joseph Carson, chief security scientist and advisory CISO at ThycoticCentrify, discusses best practices for securing healthcare data against the modern threat landscape.

Healthcare

Healthcare CISO InfoSec

Hello, I am CISO Helen. Nice To Meet You :-)

Duo's Security Blog

FEBRUARY 23, 2021

Hello, I am Helen Patton, and I am the newest Advisory CISO at Duo. While I was a CISO at Ohio State we partnered with Duo to implement MFA across our organization. Talk to a Higher Education CISO (note to security product engineers – if you ever want a testbed for your ideas, partner with a university). We don’t care.

CISO

CISO Education Banking Retail

UnitedHealth Reveals Escalated Costs from Change Healthcare Attack

SecureWorld News

JULY 18, 2024

UnitedHealth Group, the Minnesota-based health insurance giant, recently announced its second quarter results, revealing a stark financial impact from the cyberattack on Change Healthcare. The breach's scale and complexity have made it one of the most significant cyber incidents in the healthcare sector in recent years. billion and $2.45

Healthcare

Healthcare Risk Data breaches Insurance

UnitedHealth Hires Longtime Cybersecurity Executive as CISO

Security Boulevard

OCTOBER 31, 2024

UnitedHealth Group, which is still picking up the pieces after a massive ransomware attack that affected more than 100 million people, hired a new and experienced CISO to replace the previous executive who became a target of lawmakers for having no cybersecurity background.

CISO

CISO Cybersecurity Ransomware Social Engineering

CISA Mitigation Guide for Healthcare Organizations: Part One

Security Boulevard

JANUARY 11, 2024

The purpose of […] The post CISA Mitigation Guide for Healthcare Organizations: Part One appeared first on Security Boulevard.

Healthcare

Healthcare Cybersecurity CISO

Fake LinkedIn CISO Profiles Target Top Companies

SecureWorld News

OCTOBER 3, 2022

Most recently, one of those new schemes involves fake LinkedIn profiles representing Chief Information Security Officers (CISOs) at some of the world's largest corporations. CISO profiles spoofed on LinkedIn. One of the fake profiles that was discovered was for one Victor Sites, claiming to be the CISO at Chevron.

CISO

CISO Engineering Healthcare Cryptocurrency

Is fighting cybercrime a losing battle for today’s CISO?

CyberSecurity Insiders

JANUARY 12, 2022

In this blog, we’ll look at the root causes of concern for today's CISO and share some practical strategies to deter cybercriminals. The CISO role can be an unenviable one. Is the cyber deck stacked against today's CISO? As CISO, you are usually accountable for the security of the application fleet.

CISO

CISO Cybercrime Risk Healthcare

Secure Communications: Relevant or a Nice to Have?

Jane Frankland

FEBRUARY 7, 2025

But as a CISO or cyber risk owner, it’s not just about locking down sensitive informationits about doing it without slowing down your people. Amid a backdrop of increasingly sophisticated and frequent cyberattacks, APTs are a growing concern for CISOs and cyber risk owners.

Cyber Risk

Cyber Risk CISO Risk Encryption

Why Do Healthcare Departments Need Managed IT Services?

Security Boulevard

MARCH 4, 2021

With the use of technology in the healthcare industry, cyber crimes are increasing, threatening clients' confidential information. Therefore, more and more healthcare organizations realize the imperativeness of managed IT support and services in their facilities. The post Why Do Healthcare Departments Need Managed IT Services?

Healthcare

Healthcare Technology Big data CISO

Cost-Effective Steps the Healthcare Industry Can Take To Mitigate Damaging Ransomware Attacks

CyberSecurity Insiders

OCTOBER 25, 2022

Cyberattacks are rapidly overwhelming the healthcare sector. Both large and small healthcare providers continue to be a tantalizing target for repeated ransomware attacks due to limited security budgets that lead to an overall weakened cyber defense system. By Tom Neclerio , Vice President of Professional Services at SilverSky.

Healthcare

Healthcare Ransomware Social Engineering Backups

A Look Ahead at 2021: SolarWinds Fallout and Shifting CISO Budgets

Threatpost

JANUARY 8, 2021

Threatpost editors discuss the SolarWinds hack, healthcare ransomware attacks and other threats that will plague enterprises in 2021.

CISO

CISO Healthcare Ransomware Hacking

New Guidelines: Cybersecurity Resilience in the Healthcare Industry

Security Boulevard

FEBRUARY 21, 2025

Lou Morentin, VP of Compliance & Privacy There are a number of significant changes coming to Healthcare Cybersecurity requirements. The post New Guidelines: Cybersecurity Resilience in the Healthcare Industry appeared first on Security Boulevard.

Healthcare

Healthcare Cybersecurity CISO Risk

CISA Cuts: What They Mean for Cyber Defense for All

SecureWorld News

APRIL 10, 2025

Regardless of your political views, we must all agree that equipping our government with best cybersecurity talent, technology, and resources is critical to protecting our national interests," said Bruce Jenkins, CISO at Black Duck.

Energy and Utilities

Energy and Utilities Backups Healthcare Cybersecurity

Breach of healthcare debt collection firm exposes 1.9M patients – cyber experts weigh in

CyberSecurity Insiders

JULY 19, 2022

The Professional Finance Company, PFC, suffered a ransomware attack on February 26 and on July 1 confirmed that over 650 healthcare providers were affected by the breach. “As ransomware attacks continue to devastate the healthcare industry, leaders must increase their cybersecurity visibility of known and unknown assets.

Healthcare

Healthcare Ransomware Encryption Penetration Testing

How Jefferson Health enhanced cybersecurity via its cloud transformation

CSO Magazine

AUGUST 16, 2021

The cybersecurity mantra at Jefferson Health is “if we can’t do it well, we’re not going to do it” says Mark Odom, CISO of the Philadelphia-based healthcare organization. Such an approach has proved integral to Jefferson Health’s fast-tracked transition to a cloud-first, remote model to meet the demands of the COVID-19 pandemic.

Cybersecurity

Cybersecurity CSO Healthcare CISO

Healthcare CISOs Share COVID-19 Response Stories

Dark Reading

JUNE 18, 2020

Cybersecurity leaders discussed the threats and challenges that arose during the pandemic, and how they responded, during a virtual roundtable.

Healthcare

Healthcare CISO Cybersecurity

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

SecureWorld News

FEBRUARY 20, 2025

The Ghost (Cring) ransomware campaign is a rapidly evolving global threat affecting critical infrastructure, healthcare, government agencies, and businesses of all sizes. This highlights the importance of least-privilege access models and Just-in-Time (JIT) access controls to limit attack surfaces.

Ransomware

Ransomware IoT Encryption Social Engineering

Webinar Recap: Critical Concerns for Healthcare Providers in 2024

Security Boulevard

JUNE 3, 2024

Baptist Health CISO James Case shared insights on transforming cybersecurity through a risk-focused lens at a recent webinar we hosted. The discussion was moderated by Axio President, David White and Read More The post Webinar Recap: Critical Concerns for Healthcare Providers in 2024 appeared first on Axio.

Healthcare

Healthcare CISO Risk Cybersecurity

Cybersecurity Automation in Healthcare Program Launched by HHS Agency

Security Boulevard

JUNE 3, 2024

The UPGRADE program seeks to enhance and automate cybersecurity for healthcare facilities, focused on protecting operations and ensuring continuity of patient care. The post Cybersecurity Automation in Healthcare Program Launched by HHS Agency appeared first on Security Boulevard.

Healthcare

Healthcare Cybersecurity CISO Government

COVID-19 – Johnson & Johnson saw a 30% uptick in cyber-attacks

Security Affairs

DECEMBER 5, 2020

Healthcare organizations like Johnson & Johnson are observing a surge of cyber attacks carried by state-sponsored hackers during COVID-19 pandemic. Nation-state actors are intensifying their attacks against organizations in the healthcare industry, like Johnson & Johnson, that are involved in the development of the COVID-19 vaccine.

Cyber Attacks

Cyber Attacks Healthcare CISO Information Security

Verizon's 2025 DBIR: Threats Are Faster, Smarter, and More Personal

SecureWorld News

APRIL 23, 2025

Healthcare: Insider threats and error-related breaches dominate. The 2025 DBIR is a call to arms for CISOs and security leaders to rethink how they detect, respond to, and recover from breaches. Agnidipta Sarkar , Vice President, CISO Advisory, at ColorTokens: "Awareness is a battle that organizations can never truly win.

Ransomware

Ransomware CISO Backups Risk

$12M Ransomware Attack Hit Because Nobody Listened to the Security Team

SecureWorld News

APRIL 3, 2025

A mid-sized healthcare provider had identified serious vulnerabilities in their patient data systems. A healthcare CISO I mentored was frustrated by apparent lack of support for a medical device security program. I worked with a bank CISO who was struggling to get approval for a cloud security program.

Ransomware

Ransomware CISO Authentication Healthcare

CISO Stories Podcast: Effective Health Care Security is More Than HIPAA

Security Boulevard

MAY 13, 2021

Healthcare security today is extremely complex due to the integrated clinical systems and connected community networks. The post CISO Stories Podcast: Effective Health Care Security is More Than HIPAA appeared first on Security Boulevard. As well, no longer are the medical records stored with a single provider.

CISO

CISO Healthcare Risk Government

3 Reasons Why CISOs are Prioritizing Cyber Risk Quantification

Security Boulevard

AUGUST 19, 2022

Recently, I was part of four conversations with security leaders across several industries – manufacturing, financial services, natural resources and healthcare – about some of the challenges they face with cyber risk management. The post 3 Reasons Why CISOs are Prioritizing Cyber Risk Quantification appeared first on Security Boulevard.

Cyber Risk

Cyber Risk CISO Risk Financial Services

4 ways to keep the cybersecurity conversation going after the crisis has passed

CSO Magazine

MARCH 8, 2021

CISO Bill Brown knows how high-profile cybersecurity breaches like SolarWinds can raise alarm bells among executives and board members when they become headline news. But nothing more than that.” [ Learn the 7 keys to better risk assessment. | Get the latest from CSO by signing up for our newsletters. ].

CSO

CSO Cybersecurity CISO Healthcare

BlackCat Eats into Its Nine Lives, Threatens More Attacks on Hospitals

SecureWorld News

FEBRUARY 29, 2024

Change Healthcare, a major provider of IT services to hospitals, continues to battle the BlackCat ransomware syndicate. BlackCat has made the healthcare industry a prime target over the past year, victimizing providers, insurers, and now healthcare IT suppliers like Change Healthcare, a unit of Optum. authorities.

Healthcare

Healthcare Ransomware Cyber threats Encryption

Tales from the Trenches Show Security Issues Endemic to Healthcare

Dark Reading

AUGUST 5, 2020

The CISO for Indiana University Health says simple policies, good communication, and strong authentication go much further than vendor tools in solving security problems.

Healthcare

Healthcare CISO Authentication

GUEST ESSAY: Recalibrating critical infrastructure security in the wake of evolving threats

The Last Watchdog

APRIL 30, 2024

in different industries, including energy, manufacturing, and healthcare. Eventually, more organizations may want to consider appointing their CISOs to head all of IT. Related: France hit by major DDoS attack The Unitronics hack was particularly effective given the nature of the target.

Penetration Testing

Penetration Testing CISO Unstructured Data Technology

Security Roundup January 2025

BH Consulting

JANUARY 30, 2025

Big themes from the year included rising attacks against healthcare providers and incidents reflecting geopolitical tensions. Februarys Change Healthcare ransomware attack led to 100 million data breach notices being sent. MORE eBays CISO shares his thoughts on planning and security ROI.

Cyber Risk

Cyber Risk Computers and Electronics Risk CISO

RSAC Fireside Chat: VISO TRUST replaces questionaires with AI analysis to advance ‘TPRM’

The Last Watchdog

JUNE 12, 2024

From the stringent interagency guidelines and state laws in New York to healthcare regulations and European legal frameworks, companies face mounting pressures to enhance their third-party cyber risk management practices, Valente noted. It’s just an enormous challenge. “It’s It’s just an enormous challenge.

CISO

CISO Cyber Risk Risk Healthcare

A Cybersecurity Role Has Topped List of Best Jobs

CyberSecurity Insiders

JANUARY 14, 2022

The list ranks the 100 best jobs across 17 sectors including business, healthcare and technology, taking into account factors such as growth potential, salary and work-life balance. Information security analyst beat out some strong contenders on a list where nearly four in 10 jobs were in healthcare and healthcare support roles.

Cybersecurity

Cybersecurity Healthcare Information Security CISO

Cybersecurity Insights with Contrast CISO David Lindner | 01/17/25

Security Boulevard

JANUARY 17, 2025

Like forcing already overwhelmed healthcare providers to jump through more hoops with multifactor authentication (MFA) and encryption is going to stop determined attackers. The post Cybersecurity Insights with Contrast CISO David Lindner | 01/17/25 appeared first on Security Boulevard. Insight No. Yeah, right.

CISO

CISO Cybersecurity Healthcare Encryption

Many Public Salesforce Sites are Leaking Private Data

Krebs on Security

APRIL 27, 2023

A shocking number of organizations — including banks and healthcare providers — are leaking private and sensitive information from their public Salesforce Community websites, KrebsOnSecurity has learned. “To address the issue further, I reached out to several CISOs on LinkedIn and Twitter.

Banking

Banking Government Information Security Authentication

Safeguarding Patient Data with HITRUST Compliance: A Comprehensive Guide for Healthcare Technology Companies

Security Boulevard

MARCH 21, 2024

Healthcare organizations increasingly rely on technology to store, manage, and transmit sensitive patient information. The post Safeguarding Patient Data with HITRUST Compliance: A Comprehensive Guide for Healthcare Technology Companies appeared first on Hyperproof.

Healthcare

Healthcare Technology Cyber threats CISO

Healthcare M&A Means Acquiring Legacy Threats

Security Boulevard

JUNE 7, 2023

It is also home to Northern Maine Medical Center (NMMC), a 10-bed hospital that has seen […] The post Healthcare M&A Means Acquiring Legacy Threats appeared first on Security Boulevard. Fort Kent is famous for being the northernmost terminus of U.S. Route One, and infamous for its long, harsh winters.

Healthcare

Healthcare CISO Risk Government

Healthcare Now Third-Most Targeted Industry for Ransomware

UnitedHealth Confirms 100 Million Affected in Change Healthcare Breach

Webinars

Trending Sources

Why CISA is Warning CISOs About a Breach at Sisense

Webinars

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

Passwordless Authentication without Secrets!

Bridging the Security Gaps in Healthcare With Trusted Access

HHS Mandates Patient Notification After Change Healthcare Data Breach

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

Johnson & Johnson CISO Marene Allison: ‘You can’t sit on today’s technology’

Then and Now: Securing Privileged Access Within Healthcare Orgs

Hello, I am CISO Helen. Nice To Meet You :-)

UnitedHealth Reveals Escalated Costs from Change Healthcare Attack

UnitedHealth Hires Longtime Cybersecurity Executive as CISO

CISA Mitigation Guide for Healthcare Organizations: Part One

Fake LinkedIn CISO Profiles Target Top Companies

Is fighting cybercrime a losing battle for today’s CISO?

Secure Communications: Relevant or a Nice to Have?

Why Do Healthcare Departments Need Managed IT Services?

Cost-Effective Steps the Healthcare Industry Can Take To Mitigate Damaging Ransomware Attacks

A Look Ahead at 2021: SolarWinds Fallout and Shifting CISO Budgets

New Guidelines: Cybersecurity Resilience in the Healthcare Industry

CISA Cuts: What They Mean for Cyber Defense for All

Breach of healthcare debt collection firm exposes 1.9M patients – cyber experts weigh in

How Jefferson Health enhanced cybersecurity via its cloud transformation

Healthcare CISOs Share COVID-19 Response Stories

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

Webinar Recap: Critical Concerns for Healthcare Providers in 2024

Cybersecurity Automation in Healthcare Program Launched by HHS Agency

COVID-19 – Johnson & Johnson saw a 30% uptick in cyber-attacks

Verizon's 2025 DBIR: Threats Are Faster, Smarter, and More Personal

$12M Ransomware Attack Hit Because Nobody Listened to the Security Team

CISO Stories Podcast: Effective Health Care Security is More Than HIPAA

3 Reasons Why CISOs are Prioritizing Cyber Risk Quantification

4 ways to keep the cybersecurity conversation going after the crisis has passed

BlackCat Eats into Its Nine Lives, Threatens More Attacks on Hospitals

Tales from the Trenches Show Security Issues Endemic to Healthcare

GUEST ESSAY: Recalibrating critical infrastructure security in the wake of evolving threats

Security Roundup January 2025

RSAC Fireside Chat: VISO TRUST replaces questionaires with AI analysis to advance ‘TPRM’

A Cybersecurity Role Has Topped List of Best Jobs

Cybersecurity Insights with Contrast CISO David Lindner | 01/17/25

Many Public Salesforce Sites are Leaking Private Data

Safeguarding Patient Data with HITRUST Compliance: A Comprehensive Guide for Healthcare Technology Companies

Healthcare M&A Means Acquiring Legacy Threats

Stay Connected